(prot_a_parse_num_list): Don't set res->length until res->data is allocated.
(prot_a_parse_misc_info_list): Ditto. (prot_a_parse_aux_item_list): Ditto. Without this fix, a client can cause a crash by sending the length of the list, and disconnect before sending the "{". (prot_a_parse_string): Add an additional comment explaining why a client_len field should be added (bug 162).
Please register or sign in to comment