From 689107ec4d1f15e872b859f4ac9e1bffd06be9fe Mon Sep 17 00:00:00 2001
From: "/C=DE/ST=Berlin/L=Berlin/O=Netfilter
 Project/OU=Development/CN=kaber/emailAddress=kaber@netfilter.org"
 </C=DE/ST=Berlin/L=Berlin/O=Netfilter Project/OU=Development/CN=kaber/emailAddress=kaber@netfilter.org>
Date: Tue, 10 Oct 2006 06:18:40 +0000
Subject: [PATCH]: iptables segfaults when given "" to --log-prefix (Mike
 Frysinger <vapier@gentoo.org>)

Bugzilla #516
---
 extensions/libipt_ULOG.c | 8 ++++++++
 1 file changed, 8 insertions(+)

(limited to 'extensions/libipt_ULOG.c')

diff --git a/extensions/libipt_ULOG.c b/extensions/libipt_ULOG.c
index f4b7a14..a73b685 100644
--- a/extensions/libipt_ULOG.c
+++ b/extensions/libipt_ULOG.c
@@ -110,6 +110,14 @@ static int parse(int c, char **argv, int invert, unsigned int *flags,
 				   "Maximum prefix length %u for --ulog-prefix",
 				   (unsigned int)sizeof(loginfo->prefix) - 1);
 
+		if (strlen(optarg) == 0)
+			exit_error(PARAMETER_PROBLEM,
+				   "No prefix specified for --ulog-prefix");
+
+		if (strlen(optarg) != strlen(strtok(optarg, "\n")))
+			exit_error(PARAMETER_PROBLEM,
+				   "Newlines not allowed in --ulog-prefix");
+
 		strcpy(loginfo->prefix, optarg);
 		*flags |= IPT_LOG_OPT_PREFIX;
 		break;
-- 
cgit v1.2.3