sdp: Fix not checking if cstate length cstate length should be smaller than cached length otherwise the request shall be considered invalid as the data is not within the cached buffer. An independent security researcher, Julian Rauchberger, has reported this vulnerability to Beyond Security’s SecuriTeam Secure Disclosure program.

Diffstat

1 files changed, 39 insertions(+), 35 deletions(-)