romenskiy2012/curl
1
0
Fork 0
mirror of https://github.com/curl/curl.git synced 2026-06-14 14:35:38 +03:00
Code Issues Projects Releases Packages Wiki Activity

urlapi: prevent a terminal .0x component to normalize IPv4

Browse source 
Extend test 1560 to verify

Follow-up to 831a151484

Spotted by Codex Security
Closes #21652
This commit is contained in:
Daniel Stenberg 2026-05-17 00:27:30 +02:00
parent 7bde6cb9fc
commit d74c0ada4e
No known key found for this signature in database
GPG key ID: 5CC908FDB71E12C2
2 changed files with 6 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

2
lib/urlapi.c
View file

@ -523,6 +523,8 @@ UNITTEST int ipv4_normalize(struct dynbuf *host)
if(c[1] == 'x') {
c += 2; /* skip the prefix */
rc = curlx_str_hex(&c, &l, UINT_MAX);
if(rc)
return HOST_NAME;
}
else
rc = curlx_str_octal(&c, &l, UINT_MAX);

4
tests/libtest/lib1560.c
View file

@ -625,6 +625,10 @@ static const struct testcase get_parts_list[] = {
};
static const struct urltestcase get_url_list[] = {
{"https://127.1.0x", "https://127.1.0x/", 0, 0, CURLUE_OK},
{"https://127.0x", "https://127.0x/", 0, 0, CURLUE_OK},
{"https://127.0x.1", "https://127.0x.1/", 0, 0, CURLUE_OK},
{"https://127.1.1.0x", "https://127.1.1.0x/", 0, 0, CURLUE_OK},
{"https://127.1.", "https://127.0.0.1/", 0, 0, CURLUE_OK},
{"https://127.1.:443", "https://127.0.0.1:443/", 0, 0, CURLUE_OK},
{"https://127.1.?moo", "https://127.0.0.1/?moo", 0, 0, CURLUE_OK},