jeans/Tasmota
jeans/Tasmota
1
0
Fork 0
mirror of https://github.com/arendst/Tasmota.git synced 2025-07-24 03:06:33 +00:00
Code Issues Packages Projects Releases Wiki Activity

Fix possible heap corruption due to PubSubClient memmove

Browse Source 
Fix possible heap corruption due to invalid PubSubClient memmove parameters (#13700)
This commit is contained in:
Theo Arends 2021-12-28 16:05:38 +01:00
parent 00c937953b
commit 41d958020e
44 changed files with 11 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

0
lib/default/pubsubclient-2.8.12/.gitignore → lib/default/pubsubclient-2.8.13/.gitignore vendored
View File

0
lib/default/pubsubclient-2.8.12/.travis.yml → lib/default/pubsubclient-2.8.13/.travis.yml
View File

0
lib/default/pubsubclient-2.8.12/CHANGES.txt → lib/default/pubsubclient-2.8.13/CHANGES.txt
View File

0
lib/default/pubsubclient-2.8.12/LICENSE.txt → lib/default/pubsubclient-2.8.13/LICENSE.txt
View File

0
lib/default/pubsubclient-2.8.12/README.md → lib/default/pubsubclient-2.8.13/README.md
View File

0
lib/default/pubsubclient-2.8.12/examples/mqtt_auth/mqtt_auth.ino → lib/default/pubsubclient-2.8.13/examples/mqtt_auth/mqtt_auth.ino
View File

0
lib/default/pubsubclient-2.8.12/examples/mqtt_basic/mqtt_basic.ino → lib/default/pubsubclient-2.8.13/examples/mqtt_basic/mqtt_basic.ino
View File

0
lib/default/pubsubclient-2.8.12/examples/mqtt_esp8266/mqtt_esp8266.ino → lib/default/pubsubclient-2.8.13/examples/mqtt_esp8266/mqtt_esp8266.ino
View File

0
lib/default/pubsubclient-2.8.12/examples/mqtt_large_message/mqtt_large_message.ino → lib/default/pubsubclient-2.8.13/examples/mqtt_large_message/mqtt_large_message.ino
View File

0
lib/default/pubsubclient-2.8.12/examples/mqtt_publish_in_callback/mqtt_publish_in_callback.ino → lib/default/pubsubclient-2.8.13/examples/mqtt_publish_in_callback/mqtt_publish_in_callback.ino
View File

0
lib/default/pubsubclient-2.8.12/examples/mqtt_reconnect_nonblocking/mqtt_reconnect_nonblocking.ino → lib/default/pubsubclient-2.8.13/examples/mqtt_reconnect_nonblocking/mqtt_reconnect_nonblocking.ino
View File

0
lib/default/pubsubclient-2.8.12/examples/mqtt_stream/mqtt_stream.ino → lib/default/pubsubclient-2.8.13/examples/mqtt_stream/mqtt_stream.ino
View File

0
lib/default/pubsubclient-2.8.12/keywords.txt → lib/default/pubsubclient-2.8.13/keywords.txt
View File

0
lib/default/pubsubclient-2.8.12/library.json → lib/default/pubsubclient-2.8.13/library.json
View File

0
lib/default/pubsubclient-2.8.12/library.properties → lib/default/pubsubclient-2.8.13/library.properties
View File

11
lib/default/pubsubclient-2.8.12/src/PubSubClient.cpp → lib/default/pubsubclient-2.8.13/src/PubSubClient.cpp
View File

@ -439,6 +439,17 @@ boolean PubSubClient::loop() {
if (type == MQTTPUBLISH) {
if (callback) {
uint16_t tl = (this->buffer[llen+1]<<8)+this->buffer[llen+2]; /* topic length in bytes */
// Start Tasmota patch
// Observed heap corruption in some cases since v10.0.0
// Also see https://github.com/knolleary/pubsubclient/pull/843
if (llen+3+tl>this->bufferSize) {
_state = MQTT_DISCONNECTED;
_client->stop();
return false;
}
// End Tasmota patch
memmove(this->buffer+llen+2,this->buffer+llen+3,tl); /* move topic inside buffer 1 byte to front */
this->buffer[llen+2+tl] = 0; /* end the topic as a 'C' string with \x00 */
char *topic = (char*) this->buffer+llen+2;

0
lib/default/pubsubclient-2.8.12/src/PubSubClient.h → lib/default/pubsubclient-2.8.13/src/PubSubClient.h
View File

0
lib/default/pubsubclient-2.8.12/tests/.gitignore → lib/default/pubsubclient-2.8.13/tests/.gitignore vendored
View File

0
lib/default/pubsubclient-2.8.12/tests/Makefile → lib/default/pubsubclient-2.8.13/tests/Makefile
View File

0
lib/default/pubsubclient-2.8.12/tests/README.md → lib/default/pubsubclient-2.8.13/tests/README.md
View File

0
lib/default/pubsubclient-2.8.12/tests/src/connect_spec.cpp → lib/default/pubsubclient-2.8.13/tests/src/connect_spec.cpp
View File

0
lib/default/pubsubclient-2.8.12/tests/src/keepalive_spec.cpp → lib/default/pubsubclient-2.8.13/tests/src/keepalive_spec.cpp
View File

0
lib/default/pubsubclient-2.8.12/tests/src/lib/Arduino.h → lib/default/pubsubclient-2.8.13/tests/src/lib/Arduino.h
View File

0
lib/default/pubsubclient-2.8.12/tests/src/lib/BDDTest.cpp → lib/default/pubsubclient-2.8.13/tests/src/lib/BDDTest.cpp
View File

0
lib/default/pubsubclient-2.8.12/tests/src/lib/BDDTest.h → lib/default/pubsubclient-2.8.13/tests/src/lib/BDDTest.h
View File

0
lib/default/pubsubclient-2.8.12/tests/src/lib/Buffer.cpp → lib/default/pubsubclient-2.8.13/tests/src/lib/Buffer.cpp
View File

0
lib/default/pubsubclient-2.8.12/tests/src/lib/Buffer.h → lib/default/pubsubclient-2.8.13/tests/src/lib/Buffer.h
View File

0
lib/default/pubsubclient-2.8.12/tests/src/lib/Client.h → lib/default/pubsubclient-2.8.13/tests/src/lib/Client.h
View File

0
lib/default/pubsubclient-2.8.12/tests/src/lib/IPAddress.cpp → lib/default/pubsubclient-2.8.13/tests/src/lib/IPAddress.cpp
View File

0
lib/default/pubsubclient-2.8.12/tests/src/lib/IPAddress.h → lib/default/pubsubclient-2.8.13/tests/src/lib/IPAddress.h
View File

0
lib/default/pubsubclient-2.8.12/tests/src/lib/Print.h → lib/default/pubsubclient-2.8.13/tests/src/lib/Print.h
View File

0
lib/default/pubsubclient-2.8.12/tests/src/lib/ShimClient.cpp → lib/default/pubsubclient-2.8.13/tests/src/lib/ShimClient.cpp
View File

0
lib/default/pubsubclient-2.8.12/tests/src/lib/ShimClient.h → lib/default/pubsubclient-2.8.13/tests/src/lib/ShimClient.h
View File

0
lib/default/pubsubclient-2.8.12/tests/src/lib/Stream.cpp → lib/default/pubsubclient-2.8.13/tests/src/lib/Stream.cpp
View File

0
lib/default/pubsubclient-2.8.12/tests/src/lib/Stream.h → lib/default/pubsubclient-2.8.13/tests/src/lib/Stream.h
View File

0
lib/default/pubsubclient-2.8.12/tests/src/lib/trace.h → lib/default/pubsubclient-2.8.13/tests/src/lib/trace.h
View File

0
lib/default/pubsubclient-2.8.12/tests/src/publish_spec.cpp → lib/default/pubsubclient-2.8.13/tests/src/publish_spec.cpp
View File

0
lib/default/pubsubclient-2.8.12/tests/src/receive_spec.cpp → lib/default/pubsubclient-2.8.13/tests/src/receive_spec.cpp
View File

0
lib/default/pubsubclient-2.8.12/tests/src/subscribe_spec.cpp → lib/default/pubsubclient-2.8.13/tests/src/subscribe_spec.cpp
View File

0
lib/default/pubsubclient-2.8.12/tests/testcases/__init__.py → lib/default/pubsubclient-2.8.13/tests/testcases/__init__.py
View File

0
lib/default/pubsubclient-2.8.12/tests/testcases/mqtt_basic.py → lib/default/pubsubclient-2.8.13/tests/testcases/mqtt_basic.py
View File

0
lib/default/pubsubclient-2.8.12/tests/testcases/mqtt_publish_in_callback.py → lib/default/pubsubclient-2.8.13/tests/testcases/mqtt_publish_in_callback.py
View File

0
lib/default/pubsubclient-2.8.12/tests/testcases/settings.py → lib/default/pubsubclient-2.8.13/tests/testcases/settings.py
View File

0
lib/default/pubsubclient-2.8.12/tests/testsuite.py → lib/default/pubsubclient-2.8.13/tests/testsuite.py
View File