Commit e4840c88 authored by Alessandro Ghedini's avatar Alessandro Ghedini Committed by Matt Caswell
Browse files

Validate ClientHello extension field length 



RT#4069

Reviewed-by: default avatarEmilia Käsper <emilia@openssl.org>
Reviewed-by: default avatarMatt Caswell <matt@openssl.org>
parent 67d42531

ssl/t1_lib.c

+1 −1
Original line number Diff line number Diff line
@@ -1024,7 +1024,7 @@ int ssl_parse_clienthello_tlsext(SSL *s, unsigned char **p, unsigned char *d, 


    n2s(data, len);



    if (data > (d + n - len))

    if (data + len != d + n)

        goto err;



    while (data <= (d + n - 4)) {