Closed mustakimur closed 5 years ago
The return of OCALL requires to check as it is untrusted data. A ret > ssl->out_left could cause an integer overflow and lead to targeting arbitrary memory, later dump outside. The fix has been adopted from main branch of mbedtls project.
ret > ssl->out_left
16 Fix
The return of OCALL requires to check as it is untrusted data. A
ret > ssl->out_leftcould cause an integer overflow and lead to targeting arbitrary memory, later dump outside. The fix has been adopted from main branch of mbedtls project.