zrzk
/
ardupilot
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
Browse Source

AP_RCProtocol: fixed buffer overflow in st24 parser 

found using random data injection in SITL
copter407
Andrew Tridgell 5 years ago committed by Randy Mackay
parent
5b9fc1b146
commit
12c0d452e9
1 changed files with 1 additions and 1 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Split View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 2
      libraries/AP_RCProtocol/AP_RCProtocol_ST24.cpp

2
libraries/AP_RCProtocol/AP_RCProtocol_ST24.cpp
Unescape View File

@ -107,7 +107,7 @@ void AP_RCProtocol_ST24::_process_byte(uint8_t byte) @@ -107,7 +107,7 @@ void AP_RCProtocol_ST24::_process_byte(uint8_t byte)
case ST24_DECODE_STATE_GOT_STX2:
/* ensure no data overflow failure or hack is possible */
if ((unsigned)byte <= sizeof(_rxpacket.length) + sizeof(_rxpacket.type) + sizeof(_rxpacket.st24_data)) {
if (byte > 8 && (unsigned)byte <= sizeof(_rxpacket.length) + sizeof(_rxpacket.type) + sizeof(_rxpacket.st24_data)) {
_rxpacket.length = byte;
_rxlen = 0;
_decode_state = ST24_DECODE_STATE_GOT_LEN;

Write Preview
Loading…
Cancel
Save