Commit 60c6b38
committed
Fix integer underflow in SFTP RecvRead bound check
- Replace `strSz > maxSz - WOLFSSH_SFTP_HEADER - idx`
with `strSz > WOLFSSH_MAX_SFTP_RW` to prevent unsigned
wraparound and downstream WMALLOC size overflow.
- Apply to both POSIX and Windows variants.
Issue: F-36821 parent b12a2a5 commit 60c6b38
1 file changed
Lines changed: 4 additions & 2 deletions
| Original file line number | Diff line number | Diff line change | |
|---|---|---|---|
| |||
3835 | 3835 | | |
3836 | 3836 | | |
3837 | 3837 | | |
3838 | | - | |
| 3838 | + | |
| 3839 | + | |
3839 | 3840 | | |
3840 | 3841 | | |
3841 | 3842 | | |
| |||
3942 | 3943 | | |
3943 | 3944 | | |
3944 | 3945 | | |
3945 | | - | |
| 3946 | + | |
| 3947 | + | |
3946 | 3948 | | |
3947 | 3949 | | |
3948 | 3950 | | |
| |||
0 commit comments