From 5e04189887ed9100577374cede428c62d23fabe4 Mon Sep 17 00:00:00 2001
From: antirez <antirez@gmail.com>
Date: Mon, 6 Jul 2015 18:39:25 +0200
Subject: Geo: validate long,lat passed by user via API

---
 src/geo.c | 6 ++++++
 1 file changed, 6 insertions(+)

(limited to 'src/geo.c')

diff --git a/src/geo.c b/src/geo.c
index b56711123..90c59c807 100644
--- a/src/geo.c
+++ b/src/geo.c
@@ -98,6 +98,12 @@ int extractLongLatOrReply(redisClient *c, robj **argv,
             REDIS_OK) {
             return REDIS_ERR;
         }
+        if (xy[0] < GEO_LONG_MIN || xy[0] > GEO_LONG_MAX ||
+            xy[1] < GEO_LAT_MIN  || xy[1] > GEO_LAT_MAX) {
+            addReplySds(c, sdscatprintf(sdsempty(),
+                "-ERR invalid longitude,latitude pair %f,%f\r\n",xy[0],xy[1]));
+            return REDIS_ERR;
+        }
     }
     return REDIS_OK;
 }
-- 
cgit v1.2.1