core: vlc_UrlParse accepts arbitrary data after port-specification

The current implementation of vlc_UrlParse accepts data such as http://example.com:hello:world/foobar.mp3, which from the callees point-of-view is equivalent to passing http://example.com/foobar.mp3.

Elaboration

The described behavior is due to not checking for pending/invalid data when using atoi at the following location:

• git.videolan.org/vlc.git : src/text/url.c:528

Extra information

The behavior is also reproducible in 2.2.4.

added Component::Core Severity::normal Type::bug Version::master git + 1 deleted label

changed milestone to %Bugs paradize

changed the description

added Severity::trivial label and removed Severity::normal label

assigned to @Courmisch and unassigned @MigrationBot

changed milestone to %3.0 FF

added Status::fixed label

closed

Fixed by

= commit =
= af2bcdf =	[[http://git.videolan.org/?p=vlc.git;a=commit;h=af2bcdfc1619e040b759ed07563cd90c9a56a7fb
= be6b2bc =	text/url: fix port handling in vlc_UrlParse

Milestone renamed