From: Lars Ingebrigtsen <larsi@gnus.org>
Date: Tue, 29 Oct 2019 21:53:00 +0000 (+0100)
Subject: Make url-cookie.el be more resistant against bogus data
X-Git-Tag: emacs-27.0.90~832
X-Git-Url: http://git.eshelyaron.com/gitweb/?a=commitdiff_plain;h=d3517de4b472ede7abaf3a552c5064be979e6eff;p=emacs.git

Make url-cookie.el be more resistant against bogus data

* lisp/url/url-cookie.el (url-cookie-handle-set-cookie): Don't bug
out on large max-age values (bug#37974).
---

diff --git a/lisp/url/url-cookie.el b/lisp/url/url-cookie.el
index 31fc3e72664..740a43fa16f 100644
--- a/lisp/url/url-cookie.el
+++ b/lisp/url/url-cookie.el
@@ -304,9 +304,10 @@ i.e. 1970-1-1) are loaded as expiring one year from now instead."
 			 (url-filename url-current-object))))
 	 (expires nil))
     (if (and max-age (string-match "\\`-?[0-9]+\\'" max-age))
-	(setq expires (format-time-string "%a %b %d %H:%M:%S %Y GMT"
-					  (time-add nil (read max-age))
-					  t))
+	(setq expires (ignore-errors
+                        (format-time-string "%a %b %d %H:%M:%S %Y GMT"
+					    (time-add nil (read max-age))
+					    t)))
       (setq expires (cdr-safe (assoc-string "expires" args t))))
     (while (consp trusted)
       (if (string-match (car trusted) current-url)