ipp2p: add boundary check in search_all_kazaa

To avoid underflow on "end - 18", we must check for plen >= 18.
2025-09-07 05:05:12 +02:00 · 2009-01-10 06:11:13 +01:00
parent 879e964f60
commit 4cdfd49637
1 changed files with 4 additions and 0 deletions
--- a/extensions/xt_ipp2p.c
+++ b/extensions/xt_ipp2p.c
@@ -623,6 +623,10 @@ search_all_kazaa(const unsigned char *payload, const unsigned int plen)
 	if (memcmp(payload, "GET /", 5) != 0)
 		return 0;

+	if (plen < 18)
+		/* The next tests would not succeed anyhow. */
+		return 0;
+
 	end = plen - 18;
 	rem = plen - 5;
 	for (c = 5; c < end; ++c, --rem) {