Fixed a minor vulnerability in which a malformed ASN.1 length field could cause a... 5.1.2rc1
authorAndreas Steffen <andreas.steffen@strongswan.org>
Fri, 14 Feb 2014 14:06:57 +0000 (15:06 +0100)
committerAndreas Steffen <andreas.steffen@strongswan.org>
Fri, 14 Feb 2014 14:06:57 +0000 (15:06 +0100)
src/libstrongswan/asn1/asn1_parser.c

index c31fb75..e7b7a42 100644 (file)
@@ -160,6 +160,7 @@ METHOD(asn1_parser_t, iterate, bool,
                DBG1(DBG_ASN, "L%d - %s:  length of ASN.1 object invalid or too large",
                                        level, obj.name);
                this->success = FALSE;
+               goto end;
        }
 
        blob1->ptr = blob->ptr;