| commit | b3679121bb3c7017ff04b4c08402ffff5cf59b13 | |
| author | Mark Williams <mwilliams@fb.com> | |
| Thu, 20 Feb 2020 23:41:33 +0000 (20 15:41 -0800) | ||
| committer | Facebook Github Bot <facebook-github-bot@users.noreply.github.com> | |
| Thu, 20 Feb 2020 23:54:42 +0000 (20 15:54 -0800) | ||
| tree | 2313d37484ce1c62346e1e02669c122fb5f2b0b8 | treesnapshot (tar.gz zip) |
| parent | bd586671a3c22eb2f07e55f11b3ce64e1f7961e7 | commitdiff |
Fix buffer overrun in SimpleParser::handleBackslash
Summary:
It read 4 chars, then checked for validity, but any of them could have
been the end of the string, so check after each one instead.
Reviewed By: oulgen
Differential Revision: D19611163
fbshipit-source-id: 3da0a39555cb85a93f4fd98048368f17cf37e2e4
Summary:
It read 4 chars, then checked for validity, but any of them could have
been the end of the string, so check after each one instead.
Reviewed By: oulgen
Differential Revision: D19611163
fbshipit-source-id: 3da0a39555cb85a93f4fd98048368f17cf37e2e4
| hphp/runtime/ext/json/JSON_parser.cpp | diffblobblamehistory | |
| hphp/test/slow/ext_json/decode_crash.php | diffblobblamehistory | |
| hphp/test/slow/ext_json/decode_crash.php.expect | diffblobblamehistory |