Ticket #2943 (closed defect: fixed)
Setting CONTENT_LENGTH of -1 for a POST request can lead to a buffer underflow error.
|Reported by:||sdlime||Owned by:||sdlime|
In cgiutil.c MapServer does not properly handle CONTENT_LENGTHs less than 0 and can lead to an out-of-bounds memory write. Solution, don't allow it.