arrfab / rpms / httpd

Forked from rpms/httpd 5 years ago
Clone

Blame SOURCES/httpd-2.4.6-CVE-2013-6438.patch

706609
--- a/modules/dav/main/util.c	2014/01/09 14:28:39	1556815
706609
+++ b/modules/dav/main/util.c	2014/01/09 14:29:47	1556816
706609
@@ -396,8 +396,10 @@
706609
 
706609
     if (strip_white) {
706609
         /* trim leading whitespace */
706609
-        while (apr_isspace(*cdata))     /* assume: return false for '\0' */
706609
+        while (apr_isspace(*cdata)) {     /* assume: return false for '\0' */
706609
             ++cdata;
706609
+            --len;
706609
+        }
706609
 
706609
         /* trim trailing whitespace */
706609
         while (len-- > 0 && apr_isspace(cdata[len]))