From 3402e3509c4a6b05df64b5e3fd8a4de42aae9641 Mon Sep 17 00:00:00 2001
From: Koen Zandberg <koen@bergzand.net>
Date: Wed, 18 Jul 2018 14:34:54 +0200
Subject: [PATCH] sock_util: Prevent overflow in _find_pathstart

Limit the number of scanned chars in _find_pathstart to the predefined
size
---
 sys/net/sock/sock_util.c | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/sys/net/sock/sock_util.c b/sys/net/sock/sock_util.c
index 8a779701e7..1476c93a61 100644
--- a/sys/net/sock/sock_util.c
+++ b/sys/net/sock/sock_util.c
@@ -105,8 +105,10 @@ static char* _find_hoststart(const char *url)
 
 static char* _find_pathstart(const char *url)
 {
+    size_t remaining = SOCK_HOSTPORT_MAXLEN;
     char *urlpos = (char*)url;
-    while(*urlpos) {
+    while(*urlpos && remaining) {
+        remaining--;
         if (*urlpos == '/') {
             return urlpos;
         }