~mdw / sgt / puzzles / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
Richard Earnshaw points out that if you enter an out-of-range number
[sgt/puzzles] / solo.c
diff --git a/solo.c b/solo.c
index cb9ac7f..2079da9 100644 (file)
--- a/solo.c
+++ b/solo.c
@@ -2293,6 +2293,9 @@ static char *validate_desc(game_params *params, char *desc)
         } else if (n == '_') {
             /* do nothing */;
         } else if (n > '0' && n <= '9') {
+            int val = atoi(desc-1);
+            if (val < 1 || val > params->c * params->r)
+                return "Out-of-range number in game description";
             squares++;
             while (*desc >= '0' && *desc <= '9')
                 desc++;
Simon Tatham's portable puzzles collection; import of svn://svn.tartarus.org/sgt/puzzles