From 74e7072f63b2f04cb65b64abfe5ca49695f0166e Mon Sep 17 00:00:00 2001
From: Oliver Smith <osmith@sysmocom.de>
Date: Mon, 13 Jan 2020 15:51:56 +0100
Subject: mdns_rfc.c: fix possible access of uninit. mem

Fixes: CID#207548
Change-Id: Ifa269d8a88d84c01349668cdd8d1f1d24c12c6d8
---
 src/mslookup/mdns_rfc.c | 7 ++++++-
 1 file changed, 6 insertions(+), 1 deletion(-)

diff --git a/src/mslookup/mdns_rfc.c b/src/mslookup/mdns_rfc.c
index e1fc184..6f39a8e 100644
--- a/src/mslookup/mdns_rfc.c
+++ b/src/mslookup/mdns_rfc.c
@@ -83,7 +83,12 @@ char *osmo_mdns_rfc_qname_decode(void *ctx, const char *qname, size_t qname_max_
 		return NULL;
 
 	while (*qname) {
-		size_t len = *qname;
+		size_t len;
+
+		if (i >= qname_max_len)
+			return NULL;
+
+		len = *qname;
 		next_label = qname + len + 1;
 
 		if (next_label >= qname_end || i + len > OSMO_MDNS_RFC_MAX_NAME_LEN)
-- 
cgit v1.2.3