From d76e8de1bd33d3c91b194b27ff27b911a2888d62 Mon Sep 17 00:00:00 2001 From: "Roger A. Light" Date: Sun, 5 Feb 2023 01:04:40 +0000 Subject: [PATCH] Limit persistence property length --- src/persist_read_v5.c | 1 + 1 file changed, 1 insertion(+) diff --git a/src/persist_read_v5.c b/src/persist_read_v5.c index d1a4b1e9..9522a59e 100644 --- a/src/persist_read_v5.c +++ b/src/persist_read_v5.c @@ -118,6 +118,7 @@ int persist__chunk_client_msg_read_v56(FILE *db_fptr, struct P_client_msg *chunk chunk->F.id_len = ntohs(chunk->F.id_len); length -= (uint32_t)(sizeof(struct PF_client_msg) + chunk->F.id_len); + if(length > MQTT_MAX_PAYLOAD) goto error; rc = persist__read_string_len(db_fptr, &chunk->clientid, chunk->F.id_len); if(rc) return rc;