Also restrict cidrlen for testmask/masktrace (match_ips()).

2013-01-29 23:31:39 +01:00 · 2013-01-29 23:31:39 +01:00 · 441da2f245
commit 441da2f245
parent 4dbd5e07ad
1 changed files with 7 additions and 1 deletions
--- a/src/match.c
+++ b/src/match.c
@ -368,12 +368,15 @@ int match_ips(const char *s1, const char *s2)
 	*len++ = '\0';

 	cidrlen = atoi(len);
-	if (cidrlen == 0)
+	if (cidrlen <= 0)
 		return 0;

 #ifdef RB_IPV6
 	if (strchr(mask, ':') && strchr(address, ':'))
 	{
+		if (cidrlen > 128)
+			return 0;
+
 		aftype = AF_INET6;
 		ipptr = &((struct sockaddr_in6 *)&ipaddr)->sin6_addr;
 		maskptr = &((struct sockaddr_in6 *)&maskaddr)->sin6_addr;
@ -382,6 +385,9 @@ int match_ips(const char *s1, const char *s2)
 #endif
 	if (!strchr(mask, ':') && !strchr(address, ':'))
 	{
+		if (cidrlen > 32)
+			return 0;
+
 		aftype = AF_INET;
 		ipptr = &((struct sockaddr_in *)&ipaddr)->sin_addr;
 		maskptr = &((struct sockaddr_in *)&maskaddr)->sin_addr;