Diff between 6d43ca442932b6b25cbc1f168f95e6a484905c79 and d6fc849fbdacfd42ff089771d49ade446f1f2ec5
Changed Files
| File | Additions | Deletions | Status |
| monitor/rfcomm.c | +3 | -0 | modified |
Full Patch
diff --git a/monitor/rfcomm.c b/monitor/rfcomm.c
index 9b88a34..3eb19fa 100644
--- a/monitor/rfcomm.c
+++ b/monitor/rfcomm.c
@@ -452,6 +452,9 @@ void rfcomm_packet(const struct l2cap_frame *frame)
hdr.length = GET_LEN16(hdr.length);
}
+ if (!l2cap_frame->size)
+ goto fail;
+
l2cap_frame_pull(&tmp_frame, l2cap_frame, l2cap_frame->size-1);
if (!l2cap_frame_get_u8(&tmp_frame, &hdr.fcs))