Update upstream source from tag 'upstream/5.6.3'

Update to upstream version '5.6.3' with Debian dir d2b13199c1ca302286cbf83878342276cb01d710
author: Yves-Alexis Perez <corsac@debian.org> 2018-06-04 09:59:21 +0200
committer: Yves-Alexis Perez <corsac@debian.org> 2018-06-04 09:59:21 +0200
commit: 9207a0837c19c2f1bf9486d1621438693841039f (patch)
tree: c5b31310d6d5b8db2904a3309c5c4ee81e7584f2 /src/libcharon/plugins/stroke/stroke_socket.c
parent: 3456101fa5dfd78d8b74c005b8dad281bb045398 (diff)
parent: 51a71ee15c1bcf0e82f363a16898f571e211f9c3 (diff)
download: vyos-strongswan-9207a0837c19c2f1bf9486d1621438693841039f.tar.gz
vyos-strongswan-9207a0837c19c2f1bf9486d1621438693841039f.zip
1 files changed, 5 insertions, 0 deletions
diff --git a/src/libcharon/plugins/stroke/stroke_socket.c b/src/libcharon/plugins/stroke/stroke_socket.c
index c568440b7..1e7f210e9 100644
--- a/src/libcharon/plugins/stroke/stroke_socket.c
+++ b/src/libcharon/plugins/stroke/stroke_socket.c
@@ -627,6 +627,11 @@ static bool on_accept(private_stroke_socket_t *this, stream_t *stream)
 		}
 		return FALSE;
 	}
+	if (len < offsetof(stroke_msg_t, buffer))
+	{
+		DBG1(DBG_CFG, "invalid stroke message length %d", len);
+		return FALSE;
+	}
 
 	/* read message (we need an additional byte to terminate the buffer) */
 	msg = malloc(len + 1);
author	Yves-Alexis Perez <corsac@debian.org>	2018-06-04 09:59:21 +0200
committer	Yves-Alexis Perez <corsac@debian.org>	2018-06-04 09:59:21 +0200
commit	9207a0837c19c2f1bf9486d1621438693841039f (patch)
tree	c5b31310d6d5b8db2904a3309c5c4ee81e7584f2 /src/libcharon/plugins/stroke/stroke_socket.c
parent	3456101fa5dfd78d8b74c005b8dad281bb045398 (diff)
parent	51a71ee15c1bcf0e82f363a16898f571e211f9c3 (diff)
download	vyos-strongswan-9207a0837c19c2f1bf9486d1621438693841039f.tar.gz vyos-strongswan-9207a0837c19c2f1bf9486d1621438693841039f.zip