diff options
author | /C=DE/ST=Berlin/L=Berlin/O=Netfilter Project/OU=Development/CN=laforge/emailAddress=laforge@netfilter.org </C=DE/ST=Berlin/L=Berlin/O=Netfilter Project/OU=Development/CN=laforge/emailAddress=laforge@netfilter.org> | 2005-06-22 12:22:44 +0000 |
---|---|---|
committer | /C=DE/ST=Berlin/L=Berlin/O=Netfilter Project/OU=Development/CN=laforge/emailAddress=laforge@netfilter.org </C=DE/ST=Berlin/L=Berlin/O=Netfilter Project/OU=Development/CN=laforge/emailAddress=laforge@netfilter.org> | 2005-06-22 12:22:44 +0000 |
commit | 30d37b15d2edc5a33ead13152e0ed0bf80577645 (patch) | |
tree | 56d69704195250c236013a23e8d21d15defcc2ab /extensions/libipt_SNAT.c | |
parent | d3877bb01f3201577ed23795f8e9ae24a68449b6 (diff) |
This patch prevents user to set negative port value of SNAT/DNAT.
(Yasuyuki Kozakai)
Diffstat (limited to 'extensions/libipt_SNAT.c')
-rw-r--r-- | extensions/libipt_SNAT.c | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/extensions/libipt_SNAT.c b/extensions/libipt_SNAT.c index 7510f6e..a893a47 100644 --- a/extensions/libipt_SNAT.c +++ b/extensions/libipt_SNAT.c @@ -73,7 +73,7 @@ parse_to(char *arg, int portok, struct ipt_natinfo *info) range.flags |= IP_NAT_RANGE_PROTO_SPECIFIED; port = atoi(colon+1); - if (port == 0 || port > 65535) + if (port <= 0 || port > 65535) exit_error(PARAMETER_PROBLEM, "Port `%s' not valid\n", colon+1); @@ -91,7 +91,7 @@ parse_to(char *arg, int portok, struct ipt_natinfo *info) int maxport; maxport = atoi(dash + 1); - if (maxport == 0 || maxport > 65535) + if (maxport <= 0 || maxport > 65535) exit_error(PARAMETER_PROBLEM, "Port `%s' not valid\n", dash+1); if (maxport < port) |