This could be classified as a security bug, as the resulting rule allows masquerading for more hosts than intended by the admin.