Check suite size length is valid as well as space for compression

2025-07-30 02:37:28 +02:00 · 2019-07-29 08:47:45 +10:00
parent 50fbdb961f
commit 741d7bdb67
1 changed files with 2 additions and 0 deletions
--- a/src/tls13.c
+++ b/src/tls13.c
@ -3880,6 +3880,8 @@ static int DoTls13SupportedVersions(WOLFSSL* ssl, const byte* input, word32 i,
        return BUFFER_ERROR;
    ato16(input + i, &suiteSz);
    i += OPAQUE16_LEN;
+    if (i + suiteSz + 1 > helloSz)
+        return BUFFER_ERROR;
    i += suiteSz;
    /* Compression */
    b = input[i++];