Fix Issue #8687

Signed-off-by: Jonathan Winzig <jwinzig@hilscher.com>
author: Jonathan Winzig <jwinzig@hilscher.com> 2024-01-09 15:20:03 +0100
committer: Dave Rodgman <dave.rodgman@arm.com> 2024-01-22 15:31:05 +0000
commit: 63b5e216f8fcaff0f6b87bb05ffd5631158ac3c4 (patch)
tree: 43afe704a918354f74ffce5a6ca7b6a5d1b48450
parent: 1c7629c1c03fcc74781bc448d5b4d5d6ffd7219c (diff)
download: mbedtls-63b5e216f8fcaff0f6b87bb05ffd5631158ac3c4.tar.gz
1 files changed, 4 insertions, 0 deletions
diff --git a/library/x509_create.c b/library/x509_create.c
index 5e732d67f..2c17cb10c 100644
--- a/library/x509_create.c
+++ b/library/x509_create.c
@@ -380,6 +380,10 @@ int mbedtls_x509_set_extension(mbedtls_asn1_named_data **head, const char *oid,
 {
     mbedtls_asn1_named_data *cur;
 
+    if (0xFFFFFFFF == (uint32_t) val_len) {
+        return MBEDTLS_ERR_X509_BAD_INPUT_DATA;
+    }
+
     if ((cur = mbedtls_asn1_store_named_data(head, oid, oid_len,
                                              NULL, val_len + 1)) == NULL) {
         return MBEDTLS_ERR_X509_ALLOC_FAILED;
author	Jonathan Winzig <jwinzig@hilscher.com>	2024-01-09 15:20:03 +0100
committer	Dave Rodgman <dave.rodgman@arm.com>	2024-01-22 15:31:05 +0000
commit	63b5e216f8fcaff0f6b87bb05ffd5631158ac3c4 (patch)
tree	43afe704a918354f74ffce5a6ca7b6a5d1b48450
parent	1c7629c1c03fcc74781bc448d5b4d5d6ffd7219c (diff)
download	mbedtls-63b5e216f8fcaff0f6b87bb05ffd5631158ac3c4.tar.gz