16 Commits

Author	SHA1	Message	Date
Max Bruckner	22a7d04fa0	add_item_to_object: Fix use-after-free when string is aliased ... If the `string` property of the item that is added is an alias to the `string` parameter of `add_item_to_object`, and `constant` is false, `cJSON_strdup` would access the string after it has been freed. Thanks @hhallen for reporting this in #248.	2018-03-02 19:49:55 +01:00
Max Bruckner	11844dd5a6	Add cJSON_Create{Array,Object}Reference	2017-11-28 03:06:02 +01:00
Max Bruckner	eaa90a6b74	Add cJSON_CreateStringReference	2017-11-28 02:02:55 +01:00
Max Bruckner	b2afbd3c9f	cJSON_GetStringValue	2017-11-15 18:47:49 +01:00
Max Bruckner	97d7347a6e	Merge branch 'develop'	2017-10-08 22:05:02 +02:00
Max Bruckner	954d61e5e7	Fix #189, ensure returns an invalid pointer ... If realloc returns NULL, ensure didn't abort but returned printbuffer.offset instead. If an attacker can control printbuffer.offset and also make realloc fail at just the right moment, this would make cJSON potentially write at an arbitrary memory address.	2017-07-12 23:02:31 +02:00
Max Bruckner	5baa77f86c	cJSON_Parse{,WithOpts}: Skip UTF-8 (Byte Order Marks)	2017-07-03 22:28:04 +02:00
Max Bruckner	bdd5ff7ad6	misc_tests: Call all functions with NULL pointers	2017-06-28 14:22:42 +02:00
Max Bruckner	9ecc96878f	fix #174: cJSON_ReplaceItemInObject doesn't copy name	2017-05-22 22:55:05 +02:00
Max Bruckner	8b953d1202	Add cJSON_ReplaceItemViaPointer	2017-05-02 01:18:55 +02:00
Max Bruckner	c24c3e0285	Add cJSON_DetachItemViaPointer	2017-05-01 23:58:04 +02:00
Max Bruckner	28570ad095	Add test for cJSON_SetNumberHelper	2017-04-28 14:41:24 +02:00
Max Bruckner	e0d3a8a265	Limit nesting depth to 1000 and make it configurable.	2017-04-27 01:57:45 +02:00
Max Bruckner	c45dc12fd7	Tests for typecheck functions	2017-02-26 21:54:01 +01:00
Max Bruckner	56b819bfbc	tests: test cJSON_GetObjectItem and cJSON_GetObjectItemCaseSensitive	2017-02-21 11:17:08 +01:00
Max Bruckner	cbbcc91498	tests: cJSON_ArrayForEach	2017-02-21 09:17:49 +01:00