Merge mysql.com:/data0/mysqldev/my/mysql-5.0-release

into mysql.com:/data0/mysqldev/users/serg/mysql-5.0-release extra/yassl/src/handshake.cpp: Auto merged
author: unknown <serg/mysqldev@janus.mylan/production.mysql.com> 2008-01-11 13:45:20 +0100
committer: unknown <serg/mysqldev@janus.mylan/production.mysql.com> 2008-01-11 13:45:20 +0100
commit: 8d2a75cfef07896425d250d41017b581170dfdee (patch)
tree: 9128b2c11ff3d783634c4017a59ec216fe9479b1 /extra/yassl/src/handshake.cpp
parent: 81c29da83fef8ee5ff3f831bcc02a16e92b2d87b (diff)
parent: d8ca1f6c8de8c54131b5d9e8e15167cd48740bf3 (diff)
download: mariadb-git-8d2a75cfef07896425d250d41017b581170dfdee.tar.gz
1 files changed, 5 insertions, 0 deletions
diff --git a/extra/yassl/src/handshake.cpp b/extra/yassl/src/handshake.cpp
index 1d5a95820bb..262b5cb3b8b 100644
--- a/extra/yassl/src/handshake.cpp
+++ b/extra/yassl/src/handshake.cpp
@@ -527,6 +527,11 @@ void ProcessOldClientHello(input_buffer& input, SSL& ssl)
     input.read(len, sizeof(len));
     uint16 randomLen;
     ato16(len, randomLen);
+    if (ch.suite_len_ > MAX_SUITE_SZ || sessionLen > ID_LEN ||
+        randomLen > RAN_LEN) {
+        ssl.SetError(bad_input);
+        return;
+    }
 
     int j = 0;
     for (uint16 i = 0; i < ch.suite_len_; i += 3) {
author	unknown <serg/mysqldev@janus.mylan/production.mysql.com>	2008-01-11 13:45:20 +0100
committer	unknown <serg/mysqldev@janus.mylan/production.mysql.com>	2008-01-11 13:45:20 +0100
commit	8d2a75cfef07896425d250d41017b581170dfdee (patch)
tree	9128b2c11ff3d783634c4017a59ec216fe9479b1 /extra/yassl/src/handshake.cpp
parent	81c29da83fef8ee5ff3f831bcc02a16e92b2d87b (diff)
parent	d8ca1f6c8de8c54131b5d9e8e15167cd48740bf3 (diff)
download	mariadb-git-8d2a75cfef07896425d250d41017b581170dfdee.tar.gz