ReceiveTempSMS
/
Sweden-Number
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

secur32: We can't read more than expected_size - 5 in schan_DecryptMessage().

This commit is contained in:
Henri Verbeet 2012-06-26 15:32:07 +02:00 committed by Alexandre Julliard
parent e2bd967a85
commit 8f39fb146a
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
dlls/secur32/schannel.c
View File

@ -1067,7 +1067,7 @@ static SECURITY_STATUS SEC_ENTRY schan_DecryptMessage(PCtxtHandle context_handle
return SEC_E_INCOMPLETE_MESSAGE;
}
data_size = buffer->cbBuffer;
data_size = expected_size - 5;
data = HeapAlloc(GetProcessHeap(), 0, data_size);
transport.ctx = ctx;