BUG/MINOR: tools: fix off-by-one in port size check port_to_str() checks that the port size is at least 5 characters instead of at least 6. While in theory it could permit a buffer overflow, it's harmless because all callers have at least 6 characters here. This fix needs to be backported to 1.7, 1.6 and 1.5.

commit: d7dad1bc49176b9e2c6bc93d5918313b8054524e [log] [tgz]
author: Willy Tarreau <w@1wt.eu> Fri Jan 06 16:46:22 2017 +0100
committer: Willy Tarreau <w@1wt.eu> Fri Jan 06 16:46:22 2017 +0100
tree: 9d68be1eea1df686b3bef673a1b961a06432a87b
parent: 4c18346c0f18e8ac470bd0cb40b1b895e9345e26 [diff] [blame]
diff --git a/src/standard.c b/src/standard.c
index 910e1c2..02a183b 100644
--- a/src/standard.c
+++ b/src/standard.c

@@ -1409,7 +1409,7 @@
 	uint16_t port;
 
 
-	if (size < 5)
+	if (size < 6)
 		return 0;
 	*str = '\0';
commit	d7dad1bc49176b9e2c6bc93d5918313b8054524e	[log] [tgz]
author	Willy Tarreau <w@1wt.eu>	Fri Jan 06 16:46:22 2017 +0100
committer	Willy Tarreau <w@1wt.eu>	Fri Jan 06 16:46:22 2017 +0100
tree	9d68be1eea1df686b3bef673a1b961a06432a87b
parent	4c18346c0f18e8ac470bd0cb40b1b895e9345e26 [diff] [blame]