mirror of
https://github.com/schwabe/ics-openvpn.git
synced 2024-09-20 20:03:13 +02:00
Add fix for upcoming CVE-2014-8104
--HG-- extra : rebase_source : ec92418bc2616537f0e6d90eba6d2af0f6ef28ee
This commit is contained in:
parent
9d7d218542
commit
764c6125ab
@ -2036,7 +2036,11 @@ key_method_2_read (struct buffer *buf, struct tls_multi *multi, struct tls_sessi
|
||||
ASSERT (session->opt->key_method == 2);
|
||||
|
||||
/* discard leading uint32 */
|
||||
ASSERT (buf_advance (buf, 4));
|
||||
if (!buf_advance (buf, 4)) {
|
||||
msg (D_TLS_ERRORS, "TLS ERROR: Plaintext buffer too short (%d bytes).",
|
||||
buf->len);
|
||||
goto error;
|
||||
}
|
||||
|
||||
/* get key method */
|
||||
key_method_flags = buf_read_u8 (buf);
|
||||
|
Loading…
Reference in New Issue
Block a user