Fix 1 byte overread in mbedtls_asn1_get_int()

commit: 57e6e8fbb73a93d7e203bc87f7cd0e42002362c7 [log] [tgz]
author: Andres AG <andres.amayagarcia@arm.com> Mon Sep 26 09:52:41 2016 +0100
committer: Simon Butcher <simon.butcher@arm.com> Thu Oct 13 12:54:32 2016 +0100
tree: 28acfc547f69dfda40efab71e3830636887eca1a
parent: f5276098490c3711810257df834aaacd467b9611 [diff]
diff --git a/library/asn1parse.c b/library/asn1parse.c
index e4f46eb..8c167df 100644
--- a/library/asn1parse.c
+++ b/library/asn1parse.c

@@ -154,7 +154,7 @@
     if( ( ret = asn1_get_tag( p, end, &len, ASN1_INTEGER ) ) != 0 )
         return( ret );
 
-    if( len > sizeof( int ) || ( **p & 0x80 ) != 0 )
+    if( len == 0 || len > sizeof( int ) || ( **p & 0x80 ) != 0 )
         return( POLARSSL_ERR_ASN1_INVALID_LENGTH );
 
     *val = 0;
commit	57e6e8fbb73a93d7e203bc87f7cd0e42002362c7	[log] [tgz]
author	Andres AG <andres.amayagarcia@arm.com>	Mon Sep 26 09:52:41 2016 +0100
committer	Simon Butcher <simon.butcher@arm.com>	Thu Oct 13 12:54:32 2016 +0100
tree	28acfc547f69dfda40efab71e3830636887eca1a
parent	f5276098490c3711810257df834aaacd467b9611 [diff]