Diff between da250b902514e5e6de4c4281292fc79196850040 and 3a40bef49305f8327635b81ac8be52a3ca063d5a
Changed Files
| File | Additions | Deletions | Status |
| src/gatt-database.c | +5 | -0 | modified |
Full Patch
diff --git a/src/gatt-database.c b/src/gatt-database.c
index 90cc4ba..f2d7b58 100644
--- a/src/gatt-database.c
+++ b/src/gatt-database.c
@@ -1075,6 +1075,11 @@ static void cli_feat_read_cb(struct gatt_db_attribute *attrib,
goto done;
}
+ if (offset >= sizeof(state->cli_feat)) {
+ ecode = BT_ATT_ERROR_INVALID_OFFSET;
+ goto done;
+ }
+
len = sizeof(state->cli_feat) - offset;
value = len ? &state->cli_feat[offset] : NULL;