aiden
/
suricata
mirror of https://github.com/OISF/suricata
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

ssl: fix handshake cert buffer sizing

Browse Source 
'trec' buffer was not grown properly when it was checked as too small.
After this it wasn't checked again so that copying into the buffer could
overflow it.
pull/4922/head
Victor Julien 6 years ago
parent 26bcc97515
commit fa2a1385ea
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File

2
src/app-layer-ssl.c
Unescape Escape View File

@ -1408,7 +1408,7 @@ static int SSLv3ParseHandshakeType(SSLState *ssl_state, const uint8_t *input,
if (ssl_state->curr_connp->trec_pos + input_len >=
ssl_state->curr_connp->trec_len) {
ssl_state->curr_connp->trec_len =
ssl_state->curr_connp->trec_len + 2 * input_len + 1;
ssl_state->curr_connp->trec_pos + 2 * input_len + 1;
ptmp = SCRealloc(ssl_state->curr_connp->trec,
ssl_state->curr_connp->trec_len);

Write Preview
Loading…
Cancel
Save