Mercurial > hg > nginx-vendor-0-5
comparison src/mail/ngx_mail_auth_http_module.c @ 316:24def6198d7f NGINX_0_5_28
nginx 0.5.28
*) Security: the "msie_refresh" directive allowed XSS.
Thanks to Maxim Boguk.
*) Bugfix: a segmentation fault might occur in worker process if the
"auth_http_header" directive was used.
Thanks to Maxim Dounin.
*) Bugfix: a segmentation fault occurred in worker process if the
CRAM-MD5 authentication method was used, but it was not enabled.
*) Bugfix: a segmentation fault might occur in worker process if the
eventport method was used.
| author | Igor Sysoev <http://sysoev.ru> |
|---|---|
| date | Tue, 17 Jul 2007 00:00:00 +0400 |
| parents | 2ceaee987f37 |
| children | 7cf404023f50 |
comparison
equal
deleted
inserted
replaced
| 315:32a7c84208fa | 316:24def6198d7f |
|---|---|
| 1167 + sizeof("Auth-Protocol: imap" CRLF) - 1 | 1167 + sizeof("Auth-Protocol: imap" CRLF) - 1 |
| 1168 + sizeof("Auth-Login-Attempt: ") - 1 + NGX_INT_T_LEN | 1168 + sizeof("Auth-Login-Attempt: ") - 1 + NGX_INT_T_LEN |
| 1169 + sizeof(CRLF) - 1 | 1169 + sizeof(CRLF) - 1 |
| 1170 + sizeof("Client-IP: ") - 1 + s->connection->addr_text.len | 1170 + sizeof("Client-IP: ") - 1 + s->connection->addr_text.len |
| 1171 + sizeof(CRLF) - 1 | 1171 + sizeof(CRLF) - 1 |
| 1172 + ahcf->header.len | |
| 1172 + sizeof(CRLF) - 1; | 1173 + sizeof(CRLF) - 1; |
| 1173 | 1174 |
| 1174 b = ngx_create_temp_buf(pool, len); | 1175 b = ngx_create_temp_buf(pool, len); |
| 1175 if (b == NULL) { | 1176 if (b == NULL) { |
| 1176 return NULL; | 1177 return NULL; |