aiden
/
suricata
mirror of https://github.com/OISF/suricata
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

datasets/string: fix buffer overflow

Browse Source 
The size of encoded_data array and the maximum output length parameter
to Base64Encode function were incorrect leading to buffer overflow for
certain cases. The algorithm requires at least 5 bytes of space to even
convert a string of length 1.

Use BASE64_BUFFER_SIZE macro to correctly calculate this output length.
Set size of encoded_data array to the calculated output length.
pull/5627/head
Shivani Bhardwaj 4 years ago committed by Victor Julien
parent 02942a123a
commit b0a6ed1e2a
1 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File

4
src/datasets-string.c
Unescape Escape View File

@ -47,8 +47,8 @@ int StringAsBase64(const void *s, char *out, size_t out_size)
{
const StringType *str = s;
unsigned long len = out_size;
uint8_t encoded_data[str->len * 2];
unsigned long len = BASE64_BUFFER_SIZE(str->len);
uint8_t encoded_data[len];
if (Base64Encode((unsigned char *)str->ptr, str->len,
encoded_data, &len) != SC_BASE64_OK)
return 0;

Write Preview
Loading…
Cancel
Save