[riot-notifications] [RIOT-OS/RIOT] Bugfix/nanocoap token overflow (#14075)
notifications at github.com
Wed May 13 23:52:59 CEST 2020
### Contribution description
Fix for nanocoap read ouf of the input buffer:
Corrected the options parsing loop condition to prevent skip-over the buffer end condition.
Added a pointer boundary check after adding token length declared in the packet header, but before making any access to the memory pointed by the current pkt_pos pointer.
### Testing procedure
### Issues/PRs references
You can view, comment on, or merge this pull request online at:
-- Commit Summary --
* Fixed buffer read out of the input packet bounds issue.
* Added pointer range check after token length parsing.
-- File Changes --
M sys/net/application_layer/nanocoap/nanocoap.c (8)
-- Patch Links --
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the notifications