From 9dcc4a2334fa10d7d0a3c019ee35dfde4c06e044 Mon Sep 17 00:00:00 2001
From: Ivan Nardi <12729895+IvanNardi@users.noreply.github.com>
Date: Thu, 27 Jan 2022 10:59:35 +0100
Subject: Kerberos, TLS, example: fix some memory errors (#1419)

Detected by oss-fuzz:
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=43823
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=43921
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=43925
---
 example/reader_util.c | 5 +++++
 1 file changed, 5 insertions(+)

(limited to 'example')

diff --git a/example/reader_util.c b/example/reader_util.c
index 136bef914..d47b5a5ec 100644
--- a/example/reader_util.c
+++ b/example/reader_util.c
@@ -2037,9 +2037,14 @@ struct ndpi_proto ndpi_workflow_process_packet(struct ndpi_workflow * workflow,
 	    if(iph->version == 6) {
 	      iph6 = (struct ndpi_ipv6hdr *)&packet[ip_offset];
 	      iph = NULL;
+              if(header->caplen < ip_offset + sizeof(struct ndpi_ipv6hdr))
+	        return(nproto);
 	    } else if(iph->version != IPVERSION) {
 	      // printf("WARNING: not good (packet_id=%u)!\n", (unsigned int)workflow->stats.raw_packet_count);
 	      goto v4_warning;
+	    } else {
+              if(header->caplen < ip_offset + sizeof(struct ndpi_iphdr))
+	        return(nproto);
 	    }
 	  }
 	}
-- 
cgit v1.2.3