forked from osmocom/wireshark
Sanity check eapol_len in AirPDcapDecryptWPABroadcastKey
Bug: 12175 Change-Id: Iaf977ba48f8668bf8095800a115ff9a3472dd893 Reviewed-on: https://code.wireshark.org/review/15326 Petri-Dish: Michael Mann <mmann78@netscape.net> Tested-by: Petri Dish Buildbot <buildbot-no-reply@wireshark.org> Reviewed-by: Alexis La Goutte <alexis.lagoutte@gmail.com> Reviewed-by: Peter Wu <peter@lekensteyn.nl> Tested-by: Peter Wu <peter@lekensteyn.nl>
This commit is contained in:
parent
2bc2b3e686
commit
b6d838eebf
|
@ -351,7 +351,9 @@ AirPDcapDecryptWPABroadcastKey(const EAPOL_RSN_KEY *pEAPKey, guint8 *decryption_
|
|||
}
|
||||
}
|
||||
|
||||
if (key_bytes_len < GROUP_KEY_MIN_LEN || key_bytes_len > eapol_len - sizeof(EAPOL_RSN_KEY)) {
|
||||
if ((key_bytes_len < GROUP_KEY_MIN_LEN) ||
|
||||
(eapol_len < sizeof(EAPOL_RSN_KEY)) ||
|
||||
(key_bytes_len > eapol_len - sizeof(EAPOL_RSN_KEY))) {
|
||||
return AIRPDCAP_RET_NO_VALID_HANDSHAKE;
|
||||
}
|
||||
|
||||
|
|
Loading…
Reference in New Issue