#3583 closed task (fixed)
CGI params is limited to 100
Reported by: | aboudreault | Owned by: | aboudreault |
---|---|---|---|
Priority: | normal | Milestone: | 6.0 release |
Component: | MapServer C Library | Version: | unspecified |
Severity: | normal | Keywords: | |
Cc: |
Description
Though the max cgi params is very big and that there are only few cases that need more, I'm going to remove that limit and put this dynamic rather than static.
Change History (8)
comment:1 by , 14 years ago
comment:2 by , 14 years ago
Resolution: | → fixed |
---|---|
Status: | new → closed |
comment:3 by , 14 years ago
I'm wondering if the results of the realloc shoudln't be checked ? There might be a risk that an attacker would provide a huge number of cgi parameters to cause a segfault and perhaps worse
comment:5 by , 14 years ago
I've also added a fix for the mapscript problems introduced with the change above, see: r10648
comment:7 by , 14 years ago
Thanks for fixing bindings guys. I've added realloc checks in r10659 to prevent seg fault.
comment:8 by , 14 years ago
Note:
See TracTickets
for help on using tickets.
Fixed and committed in r10645.