From a41b14f94a44c1738356719f46b330372228ee4e Mon Sep 17 00:00:00 2001 From: Tom Lane Date: Thu, 16 Jun 2016 17:16:32 -0400 Subject: [PATCH] Fix validation of overly-long IPv6 addresses. The inet/cidr types sometimes failed to reject IPv6 inputs with too many colon-separated fields, instead translating them to '::/0'. This is the result of a thinko in the original ISC code that seems to be as yet unreported elsewhere. Per bug #14198 from Stefan Kaltenbrunner. Report: <20160616182222.5798.959@wrigleys.postgresql.org> --- src/backend/utils/adt/inet_net_pton.c | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/src/backend/utils/adt/inet_net_pton.c b/src/backend/utils/adt/inet_net_pton.c index 9064eaf64b..b8fa7d2bcc 100644 --- a/src/backend/utils/adt/inet_net_pton.c +++ b/src/backend/utils/adt/inet_net_pton.c @@ -496,7 +496,7 @@ inet_cidr_pton_ipv6(const char *src, u_char *dst, size_t size) else if (*src == '\0') goto enoent; if (tp + NS_INT16SZ > endp) - return (0); + goto enoent; *tp++ = (u_char) (val >> 8) & 0xff; *tp++ = (u_char) val & 0xff; saw_xdigit = 0;