Pi-Hole/dnsmasq
1
0
Fork 0
mirror of https://github.com/pi-hole/dnsmasq.git synced 2025-12-19 10:18:25 +00:00
Code Issues Packages Projects Releases Wiki Activity

Truncate stupidly large cache sizes.

Browse Source 
If the cache size is very large, the malloc() call will overflow
on 32 bit platforms and dnsmasq will crash. Limit to an order of
magnitude less.

Thanks to Lili Xu for spotting this.
This commit is contained in:
Simon Kelley
2019-08-20 23:36:49 +01:00
parent dc6a57ffb8
commit 248efe8410
1 changed files with 8 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
src/option.c
View File

@@ -2690,6 +2690,14 @@ static int one_opt(int option, char *arg, char *errstr, char *gen_err, int comma
if (size < 0) if (size < 0)
size = 0; size = 0;
/* Note that for very large cache sizes, the malloc()
will overflow. For the size of the cache record
at the time this was noted, the value of "very large"
was 46684428. Limit to an order of magnitude less than
that to be safe from changes to the cache record. */
if (size > 5000000)
size = 5000000;
daemon->cachesize = size; daemon->cachesize = size;
} }