-
由 Matthew DeVore 提交于
url_decode_internal could have been tricked into reading past the length of the **query buffer if there are fewer than 2 characters after a % (in a null-terminated string, % would have to be the last character). Prevent this from happening by checking len before decoding the % sequence. Helped-by: NRené Scharfe <l.s.r@web.de> Signed-off-by: NMatthew DeVore <matvore@google.com> Signed-off-by: NJunio C Hamano <gitster@pobox.com>
3f6b8a61