From: Andreas Steffen <andreas.steffen@strongswan.org>
Date: Thu, 20 May 2010 15:35:10 +0000 (+0200)
Subject: range check for configuration attribute types
X-Git-Tag: 4.4.1~235
X-Git-Url: http://git.ipfire.org/?a=commitdiff_plain;h=36c1650b19577a23cee2b75c4db85dcae65608fe;p=thirdparty%2Fstrongswan.git

range check for configuration attribute types
---

diff --git a/src/libhydra/plugins/attr_sql/pool_attributes.c b/src/libhydra/plugins/attr_sql/pool_attributes.c
index 52314aa89d..7ee2075363 100644
--- a/src/libhydra/plugins/attr_sql/pool_attributes.c
+++ b/src/libhydra/plugins/attr_sql/pool_attributes.c
@@ -232,6 +232,12 @@ static bool parse_attributes(char *name, char *value, value_type_t *value_type,
 		free(blob->ptr);
 		return FALSE;
 	}
+	if (*type < 1 || *type > 32767)
+	{
+		fprintf(stderr, "the attribute type must lie in the range 1..32767.\n");
+		free(blob->ptr);
+		return FALSE);
+	}
 	if (*value_type == VALUE_NONE)
 	{
 		*value_type = VALUE_HEX;