From c4fb2a590e2648ee52641b3afe22157d2e9173d3 Mon Sep 17 00:00:00 2001
From: Ivan Nardi <12729895+IvanNardi@users.noreply.github.com>
Date: Thu, 6 Oct 2022 11:25:21 +0200
Subject: irc: fix heap-buffer-overflow (#1765)

---
 src/lib/protocols/irc.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'src')

diff --git a/src/lib/protocols/irc.c b/src/lib/protocols/irc.c
index 367ec86bd..9f9034641 100644
--- a/src/lib/protocols/irc.c
+++ b/src/lib/protocols/irc.c
@@ -408,7 +408,7 @@ void ndpi_search_irc_tcp(struct ndpi_detection_module_struct *ndpi_struct, struc
 	if(user) {
 	  char buf[32], msg[64], *sp;
 
-	  snprintf(buf, sizeof(buf), "%s", &user[5]);
+	  snprintf(buf, sizeof(buf), "%.*s", packet->payload_packet_len - 5, &user[5]);
 	  if((sp = strchr(buf, ' ')) != NULL)
 	    sp[0] = '\0';
 	  
-- 
cgit v1.2.3