[mapserver-commits] [mapserver/mapserver] 0294d6: fix denials of service in msApplySLD() (#4703)
GitHub
noreply at github.com
Sat Jul 27 09:21:59 PDT 2013
Branch: refs/heads/master
Home: https://github.com/mapserver/mapserver
Commit: 0294d6afe36d6bf1476ae31ccb8d79ffa04184ba
https://github.com/mapserver/mapserver/commit/0294d6afe36d6bf1476ae31ccb8d79ffa04184ba
Author: Thomas Bonfort <thomas.bonfort at gmail.com>
Date: 2013-07-27 (Sat, 27 Jul 2013)
Changed paths:
M CMakeLists.txt
M mapcontext.c
M maphttp.c
M maphttp.h
M mapogcsld.c
M mapsymbol.c
M msautotest
M run-test-suite.sh
Log Message:
-----------
fix denials of service in msApplySLD() (#4703)
Avoid O(N^2) looping on supplied NamedLayers
Only allow HTTP and HTTPS for curl request
unlink temporary sld file in case of error
limit remote SLD downloads to 1 Megabyte by default, can be overriden by the
(wms|ows)_remote_sld_max_bytes metadata entry
More information about the mapserver-commits
mailing list