diff options
author | Peter Wu <peter@lekensteyn.nl> | 2018-05-12 12:19:46 +0200 |
---|---|---|
committer | Anders Broman <a.broman58@gmail.com> | 2018-05-12 17:36:34 +0000 |
commit | 4d800d7b8a83f6aab13558867fbe2118f0228971 (patch) | |
tree | b7259e2f8a30d03c3776f33bc94005f4010bcbe1 /dftest.c | |
parent | 65754fa4d73293a9659168e8a8d8aacca71df312 (diff) |
gsm_a_gm: fix potential buffer overrun (read)
When the string "str" is empty, "str+1" is invalid. This function can be
called from functions using SET_ELEM_VARS in packet-gsm_a_common.c which
appear to check the length first, but packet-etsi_card_app_toolkit.c and
packet-camel.c do not. Err on the safe side and do not add the item.
Change-Id: I6bd559593bb10ff0b8bf08a48d828613e3d8ccf5
Link: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=4311
Reviewed-on: https://code.wireshark.org/review/27470
Petri-Dish: Peter Wu <peter@lekensteyn.nl>
Tested-by: Petri Dish Buildbot
Reviewed-by: Pascal Quantin <pascal.quantin@gmail.com>
Reviewed-by: Anders Broman <a.broman58@gmail.com>
Diffstat (limited to 'dftest.c')
0 files changed, 0 insertions, 0 deletions