pool/uriparser
SHA256
17
0
Fork 2
Code Issues Pull Requests Activity

Commit Graph

  • 0df5fbad1e Accepting request 1327052 from devel:libraries:c_c++ factory Ana Guerrero 2026-01-13 20:36:26 +00:00
  • 82eaadb5cf - Update to 1.0.0 (bsc#1255000, CVE-2025-67899) * Fixed: [CVE-2025-67899] Protect from stack overflow during parsing by dissolving all 13 cases of recursion, both direct and indirect. The attack vector was long (or crafted) URI input. The known impact is denial of service or more. Thanks for the report to Sergey Svistunov! Thanks for in-depth review to Tim Düsterhus! (sponsored by Tideways GmbH) Thanks for C callgraph tool "egypt" (https://www.gson.org/egypt/) to Andreas Gustafsson and for "dot_find_cycles.py" to Jason Antman! * Changed: Start requiring a C99 compiler (GitHub #264, GitHub #273) * Changed: Require CMake >=3.15.0 (GitHub #270) * Fixed: Normalization of URIs with leading dot segments produced ambiguous results in the sense that a reparse after normalization would have misinterpreted path parts as a host (GitHub #262, GitHub #263, GitHub #265) Examples of affected URIs: - "scheme:/.//path1/path2" - "/.//path1/path2" - ".//path1/path2" The fix is to not remove that dot segment. Thanks to Ignace Nyamagana Butera and to Tim Düsterhus for the report! * Fixed: Insufficient pointer alignment from allocation wrappers used in the implementation of function uriCompleteMemoryManager. (GitHub #261) Thanks to Matthew Fernandez and Rolf Eike Beer for the report and review! * Fixed: Do not set absolutePath for empty paths when removing host Thanks for the report and pull request to Tim Düsterhus! (GitHub #275, GitHub #276) * Fixed: Documentation of functions uriCompleteMemoryManager, uriEmulateCalloc, uriEmulateReallocarray and uriTestMemoryManager Adam Majer 2026-01-13 15:33:47 +00:00
  • 794b093b53 Accepting request 1285443 from devel:libraries:c_c++ Ana Guerrero 2025-06-13 16:47:31 +00:00
  • 940acfbfac - Use Qt6's qhelpgenerator instead of Qt5's and fix its usage since Qt5 was being BuildRequired but qch docs weren't being generated. Dirk Mueller 2025-06-13 11:04:16 +00:00
  • 84210a4e53 Accepting request 1177507 from devel:libraries:c_c++ slfo-main slfo-1.2 Ana Guerrero 2024-05-29 17:36:21 +00:00
  • 9d470c8d4a - enable unit tests Adam Majer 2024-05-29 09:00:04 +00:00
  • 6fdb3cd32b Accepting request 1173614 from devel:libraries:c_c++ Ana Guerrero 2024-05-13 15:58:27 +00:00
  • 4f87ad310b Accepting request 1172103 from home:gkenion:branches:devel:libraries:c_c++ Adam Majer 2024-05-13 09:26:40 +00:00
  • dd7c616f75 Accepting request 1029671 from devel:libraries:c_c++ Dominique Leuenberger 2022-10-18 10:45:41 +00:00
  • 3b729c5953 Accepting request 1012079 from home:dirkmueller:Factory Adam Majer 2022-10-18 08:15:52 +00:00
  • 2f18860b20 Accepting request 978053 from devel:libraries:c_c++ Dominique Leuenberger 2022-05-19 20:49:36 +00:00
  • 440f4759f4 Accepting request 977627 from home:adaugherity:branches:devel:libraries:c_c++ Dirk Mueller 2022-05-19 06:24:15 +00:00
  • c6c9d96c6e Accepting request 945308 from devel:libraries:c_c++ Dominique Leuenberger 2022-01-10 22:53:35 +00:00
  • 3e7f7580c9 Accepting request 945156 from home:dirkmueller:Factory Adam Majer 2022-01-10 12:44:03 +00:00
  • b8e3ecf255 Accepting request 896650 from devel:libraries:c_c++ Dominique Leuenberger 2021-06-05 21:30:54 +00:00
  • 66431d555b Accepting request 893493 from home:dirkmueller:Factory Adam Majer 2021-06-01 10:32:46 +00:00
  • d3a1890ab0 Accepting request 825273 from devel:libraries:c_c++ Dominique Leuenberger 2020-08-12 08:56:35 +00:00
  • ff2a1559f9 Accepting request 823104 from home:mrey:branches:devel:libraries:c_c++ Dirk Mueller 2020-08-10 08:05:36 +00:00
  • 97e895aff1 Accepting request 718134 from devel:libraries:c_c++ Dominique Leuenberger 2019-07-28 08:20:14 +00:00
  • 90c9948e24 Accepting request 717681 from home:TheBlackCat:branches:science Adam Majer 2019-07-24 08:43:08 +00:00
  • e7728ae62a Accepting request 666491 from devel:libraries:c_c++ Dominique Leuenberger 2019-01-25 21:41:36 +00:00
  • a76fec2a2e - Update to version 0.9.1 * Fixed Out-of-bounds read in uriParse*Ex* for incomplete URIs with IPv6 addresses with embedded IPv4 address, e.g. "//[::44.1" mitigated if passed parameter <afterLast> points to readable memory containing a '\0' byte. (bsc#1122193, CVE-2018-20721) * Fixed: When parsing a malformed URI with an IPvFuture address (e.g. "http://[vA.123456" missing "]"), errorPos would point to the first character after "v" than the actual position of the error (here: the end of the string) * Fixed: uriToStringCharsRequired* reported 1 more byte than needed for IPv4 address URIs (GitHub #41); * Improved: For parse errors, waterproof errorPos <= afterLast * Soname: 1:24:0 Adam Majer 2019-01-16 14:08:15 +00:00
  • 04a3b103c7 Accepting request 649645 from devel:libraries:c_c++ Dominique Leuenberger 2018-11-20 21:25:55 +00:00
  • 1d68f50584 - uriparser-doxygen.patch: dropped, not needed - package documentation Adam Majer 2018-11-16 17:15:49 +00:00
  • 269493e5ee Fix Source URL Adam Majer 2018-11-16 15:00:56 +00:00
  • bf5cc028e2 - Update to version 0.9.0 * Fixed: Out-of-bounds write in uriComposeQuery* and uriComposeQueryEx* (bsc#1115722, CVE-2018-19198) * Fixed: Detect integer overflow in uriComposeQuery* and uriComposeQueryEx* (bsc#1115723, CVE-2018-19199) * Fixed: Protect uriResetUri* against acting on NULL input (bsc#1115724, CVE-2018-19200) * Changed: Marked as deprecated: Deprecated functions: uriNormalizeSyntaxMaskRequired[AW] uriParseUri[AW] uriParseUriEx[AW] Added: Add convenience functions to ease user code to parse a single URI New functions: uriParseSingleUri[AW] uriParseSingleUriEx[AW] uriParseSingleUriExMm[AW] Added: Support for custom memory managers (GitHub #26, #35), see Doxygen New functions (as extension of existing ones): uriAddBaseUriExMm[AW] uriComposeQueryMallocExMm[AW] uriDissectQueryMallocExMm[AW] uriFreeQueryListMm[AW] uriFreeUriMembersMm[AW] uriNormalizeSyntaxExMm[AW] uriParseSingleUriExMm[AW] uriRemoveBaseUriMm[AW] New functions (for convenience): uriCompleteMemoryManager uriEmulateCalloc Adam Majer 2018-11-16 14:13:06 +00:00
  • 0decd5f24f Accepting request 582544 from devel:libraries:c_c++ Dominique Leuenberger 2018-03-07 09:30:57 +00:00
  • 418b66b131 Accepting request 581664 from home:adamm:branches:devel:libraries:c_c++ Dirk Mueller 2018-03-05 08:53:11 +00:00
  • 35a7df8f54 Accepting request 580496 from devel:libraries:c_c++ Dominique Leuenberger 2018-03-01 11:06:22 +00:00
  • 543d7a36cd The library itself is licensed under BSD license. Use SPDX v3 Adam Majer 2018-02-27 07:43:39 +00:00
  • c34afa4c01 - Fix License - the source code contains LGPL licensed test suite. The library itself is licensed under BSD license. - Test suite requires cpptest, which we don't have at the moment. - spec-cleaner cleanup. Adam Majer 2018-02-26 08:36:16 +00:00
  • 8bd8d84ab1 Accepting request 578668 from devel:libraries:c_c++ Dominique Leuenberger 2018-02-22 13:59:19 +00:00
  • 33cf903726 Use %license instead of %doc for the license Adam Majer 2018-02-21 11:24:37 +00:00
  • efe54d316c - Package COPYING and other basic documentation - Drop HTML documentation, for now, since it has no content. Adam Majer 2018-02-21 09:05:07 +00:00
  • 56bc3a7707 - Fix Group of the library subpackage Adam Majer 2018-02-21 08:33:20 +00:00
  • 191ed08191 Accepting request 578331 from home:jengelh:branches:devel:libraries:c_c++ Adam Majer 2018-02-21 06:29:54 +00:00
  • 7ebe130964 Package library in correct subpackage Adam Majer 2018-02-20 08:31:18 +00:00
  • 6e4c0127f1 - Rename package to comply with openSUSE packaging guidelines (bnc#1081686, sr#577196) - Rename changes and spec file and drop usage of pkg_name Adam Majer 2018-02-20 08:20:44 +00:00
  • cbb03a5b9d Accepting request 577196 from devel:libraries:c_c++ Adam Majer 2018-02-20 08:15:18 +00:00