Issue Details (XML | Word | Printable)

Key: GRIZZLY-970
Type: Bug Bug
Status: Closed Closed
Resolution: Fixed
Priority: Critical Critical
Assignee: Ryan Lubke
Reporter: Ryan Lubke
Votes: 0
Watchers: 0

If you were logged in you would be able to see more operations.

Fix accept-language qvalue parsing to avoid attempting to parse values with a length more than 5.

Created: 09/Feb/11 07:55 AM   Updated: 20/Jun/13 01:25 AM   Resolved: 09/Feb/11 08:57 AM
Component/s: None
Affects Version/s: memcached-1.0, 1.9.31
Fix Version/s: memcached-1.0, 1.9.32

Time Tracking:
Not Specified

Participants: Ryan Lubke

 Description  « Hide


A specially crafted accept-language header could be sent to the container with a qvalue that tiggers the bug referenced above.

Since the RFC states there should be no more than 3 digits after the decimal, we shouldn't be attempting to parse this number anyway.

No work has yet been logged on this issue.