From ab0d0f4afdf0b8241a554365ecca51f9579d5f1e Mon Sep 17 00:00:00 2001
From: "Roger A. Light" <roger@atchoo.org>
Date: Sun, 5 Feb 2023 00:05:25 +0000
Subject: [PATCH] Restrict payload length when reloading.

---
 src/persist_read_v234.c | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/src/persist_read_v234.c b/src/persist_read_v234.c
index 180d4c5e..183be6fb 100644
--- a/src/persist_read_v234.c
+++ b/src/persist_read_v234.c
@@ -163,6 +163,10 @@ int persist__chunk_base_msg_read_v234(FILE *db_fptr, struct P_base_msg *chunk, u
 	chunk->F.payloadlen = ntohl(i32temp);
 
 	if(chunk->F.payloadlen){
+		if(chunk->F.payloadlen > MQTT_MAX_PAYLOAD){
+			rc = MOSQ_ERR_INVAL;
+			goto error;
+		}
 		chunk->payload = mosquitto_malloc(chunk->F.payloadlen+1);
 		if(chunk->payload == NULL){
 			rc = MOSQ_ERR_NOMEM;