azure-rtos/netxduo
1
0
Fork 0
mirror of https://github.com/azure-rtos/netxduo.git synced 2025-10-14 02:58:01 +08:00
Code Issues Packages Projects Releases Wiki Activity

patch for GHSA-5vrv-8j5h-h6h6

Browse Source 
edited by inspection not compiled or run-time tested
This commit is contained in:
cypherbridge
2025-05-27 19:01:20 -07:00
committed by GitHub
parent 5af33d7d55
commit ef78bf896f
1 changed files with 12 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

12
nx_secure/src/nx_secure_tls_process_clienthello.c
View File

@@ -280,6 +280,12 @@ USHORT no_extension = NX_FALSE;
length += session_id_length;
}
/* GHSA-5vrv-8j5h-h6h6 2504xx */
if ((length + 1) >= message_length)
{
return(NX_SECURE_TLS_INCORRECT_MESSAGE_LENGTH);
}
/* Negotiate the ciphersuite we want to use. */
ciphersuite_list_length = (USHORT)((packet_buffer[length] << 8) + packet_buffer[length + 1]);
length += 2;
@@ -294,6 +300,12 @@ USHORT no_extension = NX_FALSE;
length += ciphersuite_list_length;
/* GHSA-5vrv-8j5h-h6h6 2504xx */
if (length >= message_length)
{
return(NX_SECURE_TLS_INCORRECT_MESSAGE_LENGTH);
}
/* Compression methods length - one byte. For now we only support the NULL method. */
compression_methods_length = packet_buffer[length];
length++;