github_mirrors/ModSecurity
3
0
Fork 1
mirror of https://github.com/owasp-modsecurity/ModSecurity.git synced 2025-09-30 11:44:32 +03:00
Code Issues Packages Projects Releases Wiki Activity

Fix crash when there is no parameter to ENV target var. See #459.

Browse Source
This commit is contained in:
brectanus
2008-02-04 18:22:51 +00:00
parent 3232a2d41e
commit 7250e4d03c
1 changed files with 3 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
apache2/re_variables.c
View File

@@ -418,6 +418,9 @@ static int var_rule_generate(modsec_rec *msr, msre_var *var, msre_rule *rule,
/* ENV */ /* ENV */
static char *var_env_validate(msre_ruleset *ruleset, msre_var *var) { static char *var_env_validate(msre_ruleset *ruleset, msre_var *var) {
if (var->param == NULL) {
return apr_psprintf(ruleset->mp, "Parameter required for ENV.");
}
if ((strlen(var->param) > 2)&&(var->param[0] == '/') if ((strlen(var->param) > 2)&&(var->param[0] == '/')
&&(var->param[strlen(var->param) - 1] == '/')) &&(var->param[strlen(var->param) - 1] == '/'))
{ {