Fix [ASAN][BUG] heap-buffer-overflow in sdbd

author Dongkyun Son <dongkyun.s@samsung.com>

Tue, 7 Jun 2022 09:13:13 +0000 (18:13 +0900)

committer Dongkyun Son <dongkyun.s@samsung.com>

Fri, 10 Jun 2022 06:49:21 +0000 (06:49 +0000)
author Dongkyun Son <dongkyun.s@samsung.com>
Tue, 7 Jun 2022 09:13:13 +0000 (18:13 +0900)
committer Dongkyun Son <dongkyun.s@samsung.com>
Fri, 10 Jun 2022 06:49:21 +0000 (06:49 +0000)
diff --git a/src/default_plugin_basic.c b/src/default_plugin_basic.c

index 8d6a1f4..b311a45 100755 (executable)
--- a/src/default_plugin_basic.c
+++ b/src/default_plugin_basic.c
@@ -383,7 +383,9 @@ int verify_handle_by_plugin ( parameters* in, parameters* out )
      }
  
      //the data contains the string sample-echo followed by space and then the user string, hence checking for space.
-    if((in->array_of_parameter[0].v_string.data[11] == ' ')&&(!strncmp(in->array_of_parameter[0].v_string.data, "sample-echo", strlen("sample-echo")))) {
+    if((in->array_of_parameter[0].v_string.length >= 12) &&
+            (in->array_of_parameter[0].v_string.data[11] == ' ') &&
+            (!strncmp(in->array_of_parameter[0].v_string.data, "sample-echo", strlen("sample-echo")))) {
         out->array_of_parameter[0].type = type_int32;
         out->array_of_parameter[0].v_int32 = PLUGIN_RET_HANDLE;
      }
author	Dongkyun Son <dongkyun.s@samsung.com>
	Tue, 7 Jun 2022 09:13:13 +0000 (18:13 +0900)
committer	Dongkyun Son <dongkyun.s@samsung.com>
	Fri, 10 Jun 2022 06:49:21 +0000 (06:49 +0000)