Fixed potential heap buffer overflow on large hostname setting

2024-11-24 22:38:24 +00:00 · 2013-08-19 14:25:29 +02:00 · 2013-08-19 14:25:29 +02:00 · 75c1a6f97c
commit 75c1a6f97c
parent 694d3aeb47
1 changed files with 4 additions and 0 deletions
--- a/library/ssl_tls.c
+++ b/library/ssl_tls.c
@ -3220,6 +3220,10 @@ int ssl_set_hostname( ssl_context *ssl, const char *hostname )
        return( POLARSSL_ERR_SSL_BAD_INPUT_DATA );

    ssl->hostname_len = strlen( hostname );
+
+    if( ssl->hostname_len + 1 == 0 )
+        return( POLARSSL_ERR_SSL_BAD_INPUT_DATA );
+
    ssl->hostname = (unsigned char *) polarssl_malloc( ssl->hostname_len + 1 );

    if( ssl->hostname == NULL )