arturobernalg opened a new pull request, #821: URL: https://github.com/apache/httpcomponents-client/pull/821
This change fixes a security issue in the websocket module where a compressed permessage-deflate message could inflate beyond the configured message size limit before being rejected. The fix enforces the decoded size limit during inflation and preserves close code 1009 when the limit is exceeded. Existing behavior for normal messages remains unchanged. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected] --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
