From ed9c9c3042d9b0d1eeacdaf325b37fbe47762f0a Mon Sep 17 00:00:00 2001 From: liuxueli Date: Fri, 3 Dec 2021 11:55:23 +0300 Subject: TSG-8791: SSL解析层调用X509_get_version返回负值,SSL访问数组越界导致SAPP重启 MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit --- src/SSL_Certificate.c | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) (limited to 'src') diff --git a/src/SSL_Certificate.c b/src/SSL_Certificate.c index aa10790..60fbae3 100644 --- a/src/SSL_Certificate.c +++ b/src/SSL_Certificate.c @@ -1050,7 +1050,7 @@ UCHAR fn_pGetSSLInfo(char *pcCert, int iLen, ssl_stream *a_ssl_stream, struct { /*version*/ int ver = X509_get_version(x509_handle); - if(ver>CERT_VER_MAXNUM) goto cert_return; + if(ver>CERT_VER_MAXNUM || ver<0) goto cert_return; memcpy(a_ssl_stream->stSSLCert->SSLVersion, g_astCertVersions[ver].pcString, 1 + strlen((const char *)g_astCertVersions[ver].pcString)); -- cgit v1.2.3