From 8bc3fe510b78e785110b2ad88fe89f00743e06b0 Mon Sep 17 00:00:00 2001
From: Mark Andrews <marka@isc.org>
Date: Wed, 16 Jan 2008 05:15:36 +0000
Subject: [PATCH] 2305.   [security]      inet_network() buffer overflow.
 CVE-2008-0122.

---
 CHANGES                      | 1 +
 lib/bind/inet/inet_network.c | 4 ++--
 2 files changed, 3 insertions(+), 2 deletions(-)

diff --git a/CHANGES b/CHANGES
index f0d5e7fed23..f72f4112f62 100644
--- a/CHANGES
+++ b/CHANGES
@@ -1,3 +1,4 @@
+2305.	[security]	inet_network() buffer overflow. CVE-2008-0122.
 
 	--- 9.2.9 released ---
 
diff --git a/lib/bind/inet/inet_network.c b/lib/bind/inet/inet_network.c
index aaa50c83157..2f40949e281 100644
--- a/lib/bind/inet/inet_network.c
+++ b/lib/bind/inet/inet_network.c
@@ -84,9 +84,9 @@ again:
 	}
 	if (!digit)
 		return (INADDR_NONE);
+	if (pp >= parts + 4 || val > 0xffU)
+		return (INADDR_NONE);
 	if (*cp == '.') {
-		if (pp >= parts + 4 || val > 0xffU)
-			return (INADDR_NONE);
 		*pp++ = val, cp++;
 		goto again;
 	}
-- 
2.47.3