moonlight-stream/moonlight-embedded
1
0
Fork 0
mirror of https://github.com/moonlight-stream/moonlight-embedded.git synced 2025-07-01 23:35:47 +00:00
Code Issues Packages Projects Releases Wiki Activity

Fix stack buffer overflow in pairing process

Browse Source
This commit is contained in:
Cameron Gutman 2022-04-21 23:06:31 -05:00
parent 039040e247
commit d74cc63038
1 changed files with 10 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

13
libgamestream/client.c
View File

@ -495,13 +495,20 @@ int gs_pair(PSERVER_DATA server, char* pin) {
goto cleanup;
}
char challenge_response_data_enc[48];
char challenge_response_data[48];
char challenge_response_data_enc[64];
char challenge_response_data[64];
if (strlen(result) / 2 > 64) {
gs_error = "Server challenge response too big";
ret = GS_FAILED;
goto cleanup;
}
for (int count = 0; count < strlen(result); count += 2) {
sscanf(&result[count], "%2hhx", &challenge_response_data_enc[count / 2]);
}
decrypt(challenge_response_data_enc, 48, aes_key, challenge_response_data);
decrypt(challenge_response_data_enc, 64, aes_key, challenge_response_data);
char client_secret_data[16];
RAND_bytes(client_secret_data, 16);