fix out of bounds read in PemToDer with 0 size der buffer, CU #4

2016-06-24 14:42:06 -06:00
parent 92e501c8e4
commit 9c7bea46d2
1 changed files with 1 additions and 1 deletions
--- a/src/ssl.c
+++ b/src/ssl.c
@ -3551,7 +3551,7 @@ int PemToDer(const unsigned char* buff, long longSz, int type,

    /* set up der buffer */
    neededSz = (long)(footerEnd - headerEnd);
-    if (neededSz > sz || neededSz < 0)
+    if (neededSz > sz || neededSz <= 0)
        return SSL_BAD_FILE;

    ret = AllocDer(pDer, (word32)neededSz, type, heap);