ssl : SSLProbingParser overflow fix

Found by fuzzing Fixes ssl detection evasion by packet splitting
OISF · Apr 30, 2019 · 316a411 · 316a411
1 parent 666bb1b
commit 316a411
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/src/app-layer-ssl.c b/src/app-layer-ssl.c
@@ -2628,7 +2628,7 @@ static AppProto SSLProbingParser(Flow *f, uint8_t direction,
         uint8_t *input, uint32_t ilen, uint8_t *rdir)
 {
     /* probably a rst/fin sending an eof */
-    if (ilen == 0)
+    if (ilen < 3)
         return ALPROTO_UNKNOWN;
 
     /* for now just the 3 byte header ones */