From d1f0b56adc56a35f98d8b5cabe426dc2408b65c9 Mon Sep 17 00:00:00 2001
From: theirix <theirix@gmail.com>
Date: Mon, 25 Jul 2016 12:58:27 +0300
Subject: Fixed payload overflow in MQTT, DNS

---
 src/lib/protocols/mqtt.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'src/lib/protocols/mqtt.c')

diff --git a/src/lib/protocols/mqtt.c b/src/lib/protocols/mqtt.c
index 024fad8a7..37c469066 100644
--- a/src/lib/protocols/mqtt.c
+++ b/src/lib/protocols/mqtt.c
@@ -144,7 +144,7 @@ void ndpi_search_mqtt (struct ndpi_detection_module_struct *ndpi_struct,
 	NDPI_LOG(NDPI_PROTOCOL_MQTT, ndpi_struct, NDPI_LOG_DEBUG,"====>>>> Passed second stage of identification\n");
 	// third stage verification (payload)
 	if (pt == CONNECT) {
-		if (memcmp(&(packet->payload[4]),"MQTT",4) == 0) {
+		if (packet->payload_packet_len >= 8 && memcmp(&(packet->payload[4]),"MQTT",4) == 0) {
 			NDPI_LOG(NDPI_PROTOCOL_MQTT, ndpi_struct, NDPI_LOG_DEBUG, "Mqtt found CONNECT\n");
 			ndpi_int_mqtt_add_connection(ndpi_struct,flow);
 			return;
-- 
cgit v1.2.3