From f84776266d1d232ecf11f1cf57900a7abe000b54 Mon Sep 17 00:00:00 2001
From: "Eric S. Raymond" <esr@thyrsus.com>
Date: Wed, 3 Sep 1997 15:45:21 +0000
Subject: Prevent buffer spamming.

svn path=/trunk/; revision=1279
---
 socket.c | 8 +++++++-
 1 file changed, 7 insertions(+), 1 deletion(-)

(limited to 'socket.c')

diff --git a/socket.c b/socket.c
index 7a30e3a8..5fe0683c 100644
--- a/socket.c
+++ b/socket.c
@@ -53,8 +53,14 @@ int SockOpen(char *host, int clientPort)
     else
     {
         hp = gethostbyname(host);
-        if (hp == NULL)
+
+	/*
+	 * Add a check to make sure the address has a valid IPv4 or IPv6
+	 * length.  This prevents buffer spamming by a broken DNS.
+	 */
+        if (hp == NULL || (hp->h_length != 4 && hp->h_length != 8))
             return -1;
+
         memcpy(&ad.sin_addr, hp->h_addr, hp->h_length);
     }
     ad.sin_port = htons(clientPort);
-- 
cgit v1.2.3