fix heap-buffer-overflow issue in function cfg_mark_ports of file uti…

…l/config_file.c
NLnetLabs · Apr 3, 2024 · 193401e · 193401e
1 parent e1aeabd
commit 193401e
Showing 1 changed file with 4 additions and 0 deletions.
diff --git a/util/config_file.c b/util/config_file.c
@@ -1761,6 +1761,10 @@ cfg_mark_ports(const char* str, int allow, int* avail, int num)
 #endif
 	if(!mid) {
 		int port = atoi(str);
+		if(port < 0) {
+			log_err("Prevent out-of-bounds access to array avail");
+			return 0;
+		}
 		if(port == 0 && strcmp(str, "0") != 0) {
 			log_err("cannot parse port number '%s'", str);
 			return 0;