[InterNetNews/inn] 53ae0b: ovsqlite: Check the length of added overview data
Julien ÉLIE
noreply at github.com
Tue Dec 26 10:32:43 UTC 2023
Branch: refs/heads/main
Home: https://github.com/InterNetNews/inn
Commit: 53ae0b83ae3e8ea56b4ee799d17df341ca6e2655
https://github.com/InterNetNews/inn/commit/53ae0b83ae3e8ea56b4ee799d17df341ca6e2655
Author: Julien ÉLIE <Julien-Elie at users.noreply.github.com>
Date: 2023-12-26 (Tue, 26 Dec 2023)
Changed paths:
M doc/pod/news.pod
M storage/ovsqlite/ovsqlite-private.h
M storage/ovsqlite/ovsqlite-server.c
M storage/ovsqlite/ovsqlite.c
Log Message:
-----------
ovsqlite: Check the length of added overview data
At read-time (search), ovsqlite-server implements a limit of 100,000
bytes to detect corrupt overview data. This patch adds the same limit
when adding overview data, so that we do not add overview data into the
database that could not be read afterwards.
Thanks to Jesse Rehmer for the bug report (a newsgroup couldn't be
expired because of a spam with 111,497 bytes of overview data that
had been added into the database but was considered as corrupt when
expiring the newsgroup).
close #293
More information about the inn-committers
mailing list