update(userspace/falco): enforce check that content-type actually sta…

…rts with "application/json" string. Signed-off-by: Federico Di Pierro <[email protected]> Co-authored-by: Leonardo Grasso <[email protected]>
falcosecurity · Dec 9, 2021 · bb8b75a · bb8b75a
1 parent b359f71
commit bb8b75a
Showing 1 changed file with 2 additions and 1 deletion.
diff --git a/userspace/falco/webserver.cpp b/userspace/falco/webserver.cpp
@@ -150,7 +150,8 @@ bool k8s_audit_handler::handlePost(CivetServer *server, struct mg_connection *co
 	// Ensure that the content-type is application/json
 	const char *ct = server->getHeader(conn, string("Content-Type"));
 
-	if(ct == NULL || strstr(ct, "application/json") == NULL)
+	// content type *must* start with application/json
+	if(ct == NULL || strncmp(ct, "application/json", strlen("application/json")) != 0)
 	{
 		mg_send_http_error(conn, 400, "Wrong Content Type");