add sanity check for short read

2025-08-04 13:14:45 +02:00 · 2018-03-02 09:38:11 -07:00
parent f6869dfe09
commit 223903717a
1 changed files with 4 additions and 0 deletions
--- a/src/tls.c
+++ b/src/tls.c
@@ -2618,6 +2618,10 @@ static int TLSX_CSR2_Parse(WOLFSSL* ssl, byte* input, word16 length,
        word16 size = 0;

        /* list size */
+        if (offset + OPAQUE16_LEN >= length) {
+            return BUFFER_E;
+        }
+
        ato16(input + offset, &request_length);
        offset += OPAQUE16_LEN;