Added boundary check in kerberos protocol

author: Luca Deri <deri@ntop.org> 2020-06-01 18:22:10 +0200
committer: Luca Deri <deri@ntop.org> 2020-06-01 18:22:10 +0200
commit: af2a44ae5fd530218746d3272510fb6409b4366c (patch)
tree: d778a53b6eb5f03668243cca0d0c67a4ad12c15b /src/lib/protocols/kerberos.c
parent: 241af016e9e2a43d24cbdc2378d813ba523f5126 (diff)
1 files changed, 7 insertions, 5 deletions
diff --git a/src/lib/protocols/kerberos.c b/src/lib/protocols/kerberos.c
index 98aa91a51..f4c1a175a 100644
--- a/src/lib/protocols/kerberos.c
+++ b/src/lib/protocols/kerberos.c
@@ -202,11 +202,13 @@ void ndpi_search_kerberos(struct ndpi_detection_module_struct *ndpi_struct,
 
 
 	      if(body_offset < packet->payload_packet_len) {
-		u_int16_t name_offset;
-
-		name_offset = body_offset + 13;
-		for(i=0; i<20; i++) if(packet->payload[name_offset] != 0x1b) name_offset++; /* ASN.1 */
-
+		u_int16_t name_offset = body_offset + 13;
+		
+		for(i=0; (i<20) && (name_offset < packet->payload_packet_len); i++) {
+		  if(packet->payload[name_offset] != 0x1b)
+		    name_offset++; /* ASN.1 */
+		}
+		
 #ifdef KERBEROS_DEBUG
 		printf("name_offset=%u [%02X %02X] [byte 0 must be 0x1b]\n", name_offset, packet->payload[name_offset], packet->payload[name_offset+1]);
 #endif
author	Luca Deri <deri@ntop.org>	2020-06-01 18:22:10 +0200
committer	Luca Deri <deri@ntop.org>	2020-06-01 18:22:10 +0200
commit	af2a44ae5fd530218746d3272510fb6409b4366c (patch)
tree	d778a53b6eb5f03668243cca0d0c67a4ad12c15b /src/lib/protocols/kerberos.c
parent	241af016e9e2a43d24cbdc2378d813ba523f5126 (diff)