Aren
/
NetBSD
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

EXP-TLS server: Fix TLS Message Length validation: 

http://w1.fi/gitweb/gitweb.cgi?p=hostap.git;a=commitdiff;\
    h=586c446e0ff42ae00315b014924ec669023bd8de

http://www.pre-cert.de/advisories/PRE-SA-2012-07.txt
This commit is contained in:
christos 2012-10-08 14:03:09 +00:00
parent e64c806987
commit 5d936c3691
1 changed files with 6 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
external/bsd/wpa/dist/src/eap_server/eap_server_tls_common.c vendored
View File

@ -223,6 +223,12 @@ static int eap_server_tls_process_fragment(struct eap_ssl_data *data,
" over 64 kB)");
return -1;
}
if (len > message_length) {
wpa_printf(MSG_INFO, "SSL: Too much data (%zu bytes) "
"in first fragment of frame (TLS Message "
"Length %u bytes)", len, message_length);
return -1;
}
data->tls_in = wpabuf_alloc(message_length);
if (data->tls_in == NULL) {