From 558e2658da5a0adac59866b5816f19cad76db183 Mon Sep 17 00:00:00 2001
From: Suresh Kumar N <suresh.n@samsung.com>
Date: Thu, 10 Dec 2015 20:31:16 +0530
Subject: [PATCH] Handling error in PCSCF decoding

Change-Id: I314afb90991b42657c51527e1cc90c88bfd6d97e
---
 src/core_object/co_sim.c | 8 +++++++-
 1 file changed, 7 insertions(+), 1 deletion(-)

diff --git a/src/core_object/co_sim.c b/src/core_object/co_sim.c
index 50287c3..f53cd0a 100644
--- a/src/core_object/co_sim.c
+++ b/src/core_object/co_sim.c
@@ -2811,9 +2811,15 @@ gboolean tcore_sim_decode_isim_pcscf(struct tel_sim_pcscf *p_out, unsigned char
 
 	/* P-CSCF Address length */
 	len = p_in[1];
+	if (len <= 0) {
+		err("invalid address length : len : %d", len);
+		return FALSE;
+	}
 
-	if (in_length < len + 2)
+	if (in_length < len + 2) {
 		err("invalid length. in_length[%d] < TLV_len[%d] + 2", in_length, len);
+		return FALSE;
+	}
 
 	/* P-CSCF Address type */
 	if (p_in[2] == 0x00)
-- 
2.7.4