[trivial-utf-8-devel] UTF-8 overlong form validation
Kazuo Koga
kogakazuo at gmail.com
Thu Sep 16 14:40:40 UTC 2010
Hi,
This code should be error:
(trivial-utf-8:utf-8-bytes-to-string #(#xe0 #x80 #xaf))
but evaluated to:
"/"
This behavior could be a security hole. (see http://en.wikipedia.org/wiki/UTF-8)
And, I wrote patch to fix this.
Regards
Kazuo
-------------- next part --------------
A non-text attachment was scrubbed...
Name: my-patch.txt.gz
Type: application/x-gzip
Size: 1472 bytes
Desc: not available
URL: <https://mailman.common-lisp.net/pipermail/trivial-utf-8-devel/attachments/20100916/341882cb/attachment.bin>
More information about the trivial-utf-8-devel
mailing list