]> git.ipfire.org Git - thirdparty/suricata.git/commitdiff
projects / thirdparty / suricata.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: d07c495)
util-decode-der: fix heap-buffer-overflow
authorMats Klepsland <mats.klepsland@gmail.com>
Thu, 31 Mar 2016 12:28:24 +0000 (14:28 +0200)
committerMats Klepsland <mats.klepsland@gmail.com>
Thu, 31 Mar 2016 14:12:56 +0000 (16:12 +0200)
src/util-decode-der.c patch | blob | blame | history

diff --git a/src/util-decode-der.c b/src/util-decode-der.c
index 05c4671ad853fd3d5a1cebe694d67ef9cb97f6d8..67e7b0dda97345c6d2b1d945ad2000cd341a6678 100644 (file)
--- a/src/util-decode-der.c
+++ b/src/util-decode-der.c
@@ -742,6 +742,9 @@ Asn1Generic * DecodeDer(const unsigned char *buffer, uint32_t size, uint32_t *er
     Asn1Generic *cert;
     uint8_t c;
 
+    if (size < 2)
+        return NULL;
+
     /* Check that buffer is an ASN.1 structure (basic checks) */
     if (d_ptr[0] != 0x30 && d_ptr[1] != 0x82) /* Sequence */
         return NULL;
Mirror of https://github.com/OISF/suricata.git