mirror of
https://github.com/owasp-modsecurity/ModSecurity.git
synced 2025-08-14 05:45:59 +03:00
Fix crash when there is no parameter to ENV target var. See #459.
This commit is contained in:
parent
3232a2d41e
commit
7250e4d03c
@ -418,6 +418,9 @@ static int var_rule_generate(modsec_rec *msr, msre_var *var, msre_rule *rule,
|
||||
/* ENV */
|
||||
|
||||
static char *var_env_validate(msre_ruleset *ruleset, msre_var *var) {
|
||||
if (var->param == NULL) {
|
||||
return apr_psprintf(ruleset->mp, "Parameter required for ENV.");
|
||||
}
|
||||
if ((strlen(var->param) > 2)&&(var->param[0] == '/')
|
||||
&&(var->param[strlen(var->param) - 1] == '/'))
|
||||
{
|
||||
|
Loading…
x
Reference in New Issue
Block a user