File CVE-2015-5343-1.8.14.patch of Package subversion.2443

Index: subversion/mod_dav_svn/util.c
===================================================================
--- subversion/mod_dav_svn/util.c	(revision 1714525)
+++ subversion/mod_dav_svn/util.c	(working copy)
@@ -778,7 +778,12 @@
 
   if (content_length)
     {
-      buf = svn_stringbuf_create_ensure(content_length, pool);
+      /* Do not allocate more than 1 MB until we receive request body. */
+      apr_size_t alloc_len = 1 * 1024 *1024;
+      if (content_length < alloc_len)
+        alloc_len = (apr_size_t) content_length;
+
+      buf = svn_stringbuf_create_ensure(alloc_len, pool);
     }
   else
     {

Places

File CVE-2015-5343-1.8.14.patch of Package subversion.2443

Places