From 9dcc4a2334fa10d7d0a3c019ee35dfde4c06e044 Mon Sep 17 00:00:00 2001
From: Ivan Nardi <12729895+IvanNardi@users.noreply.github.com>
Date: Thu, 27 Jan 2022 10:59:35 +0100
Subject: Kerberos, TLS, example: fix some memory errors (#1419)

Detected by oss-fuzz:
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=43823
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=43921
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=43925
---
 src/lib/protocols/kerberos.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'src/lib/protocols/kerberos.c')

diff --git a/src/lib/protocols/kerberos.c b/src/lib/protocols/kerberos.c
index 98d919391..65b35838f 100644
--- a/src/lib/protocols/kerberos.c
+++ b/src/lib/protocols/kerberos.c
@@ -230,7 +230,7 @@ void ndpi_search_kerberos(struct ndpi_detection_module_struct *ndpi_struct,
 		    name_offset++;
 		  }
 
-		  if(name_offset < packet->payload_packet_len - 1 &&
+		  if(name_offset < packet->payload_packet_len - 3 &&
 		     packet->payload[name_offset+1] == 0x1b)
 		  {
 		    name_offset += 2;
-- 
cgit v1.2.3