Limit decoded bencode string lengths to 32 bits

Found in fuzzing

diff --git a/bencode/decode.go b/bencode/decode.go
index 0cb04b91554e03561f8df4bacd5eb6df8ba96bfe..768c9c7ba43cf27659f2c716a713758dd84ded72 100644 (file)
--- a/bencode/decode.go
+++ b/bencode/decode.go
@@ -154,7 +154,7 @@ func (d *Decoder) parseString(v reflect.Value) error {
 
        // read the string length first
        d.readUntil(':')
-       length, err := strconv.ParseInt(bytesAsString(d.buf.Bytes()), 10, 0)
+       length, err := strconv.ParseInt(bytesAsString(d.buf.Bytes()), 10, 32)
        checkForIntParseError(err, start)
 
        defer d.buf.Reset()