github
/
mosquitto
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Fix invalid handling of long hex in config file.

Browse Source 
Closes oss-fuzz #55948.
pull/2756/head
Roger A. Light 3 years ago
parent 769c94a103
commit 23983afe82
1 changed files with 5 additions and 3 deletions
Show Stats Download Patch File Download Diff File

8
lib/util_mosq.c
Unescape Escape View File

@ -174,15 +174,17 @@ int mosquitto__hex2bin(const char *hex, unsigned char *bin, int bin_max_len)
BIGNUM *bn = NULL; BIGNUM *bn = NULL;
int len; int len;
int leading_zero = 0; int leading_zero = 0;
int start = 0;
size_t i = 0; size_t i = 0;
/* Count the number of leading zero */ /* Count the number of leading zero */
for(i=0; i<strlen(hex); i=i+2) { for(i=0; i<strlen(hex); i=i+2) {
if(strncmp(hex + i, "00", 2) == 0) { if(strncmp(hex + i, "00", 2) == 0) {
leading_zero++; if(leading_zero >= bin_max_len){
return 0;
}
/* output leading zero to bin */ /* output leading zero to bin */
bin[start++] = 0; bin[leading_zero] = 0;
leading_zero++;
}else{ }else{
break; break;
} }

Write Preview
Loading…
Cancel
Save