generic-library/openssl
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

check length properly

Browse Source 
Submitted by: Peter Sylvester
This commit is contained in:
Bodo Möller 2006-04-03 13:57:56 +00:00
parent a123c552cd
commit 22f41c9b99
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
ssl/t1_lib.c
View File

@ -221,7 +221,7 @@ unsigned char *ssl_add_clienthello_tlsext(SSL *s, unsigned char *p, unsigned cha
/* Add TLS extension EllipticCurves to the ClientHello message */
long lenmax;
if ((lenmax = limit - p - 5) < 0) return NULL;
if ((lenmax = limit - p - 6) < 0) return NULL;
if (s->tlsext_ellipticcurvelist_length > (unsigned long)lenmax) return NULL;
if (s->tlsext_ellipticcurvelist_length > 255)
{