From 73b68e788e10e1da9688c4fae8e0c5dcab7a2754 Mon Sep 17 00:00:00 2001
From: Bill Currie <bill@taniwha.org>
Date: Wed, 3 Jul 2002 18:29:36 +0000
Subject: [PATCH] close a small security hole where a malicious challenge could
 potentially wreak havoc with info strings.

---
 qw/source/cl_main.c | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/qw/source/cl_main.c b/qw/source/cl_main.c
index bb0c666c9..43d7d9d40 100644
--- a/qw/source/cl_main.c
+++ b/qw/source/cl_main.c
@@ -986,6 +986,11 @@ CL_ConnectionlessPacket (void)
 
 	if (c == S2C_CHALLENGE) {
 		Con_Printf ("challenge");
+		if (cls.state >= ca_connected) {
+			if (!cls.demoplayback)
+				Con_Printf ("\nDup challenge received.  Ignored.\n");
+			return;
+		}
 
 		s = MSG_ReadString (net_message);
 		cls.challenge = atoi (s);