Blame SOURCES/gnutls-3.1.18-server-hello-fix.patch

6c6c5b
diff -ur gnutls-3.1.18.orig/lib/gnutls_handshake.c gnutls-3.1.18/lib/gnutls_handshake.c
6c6c5b
--- gnutls-3.1.18.orig/lib/gnutls_handshake.c	2013-11-15 18:10:53.000000000 +0100
6c6c5b
+++ gnutls-3.1.18/lib/gnutls_handshake.c	2014-05-28 13:43:50.922689540 +0200
6c6c5b
@@ -1679,7 +1679,7 @@
6c6c5b
   DECR_LEN (len, 1);
6c6c5b
   session_id_len = data[pos++];
6c6c5b
 
6c6c5b
-  if (len < session_id_len)
6c6c5b
+  if (len < session_id_len || session_id_len > TLS_MAX_SESSION_ID_SIZE)
6c6c5b
     {
6c6c5b
       gnutls_assert ();
6c6c5b
       return GNUTLS_E_UNSUPPORTED_VERSION_PACKET;