From 2a98fb08fe748fb76f688463a8ea634d04502338 Mon Sep 17 00:00:00 2001
From: William Robinet <william.robinet@conostix.com>
Date: Wed, 20 Jan 2021 10:34:38 +0100
Subject: [PATCH] Limit length during server name decoding

---
 ssl/ssl.enums.c | 1 +
 1 file changed, 1 insertion(+)

diff --git a/ssl/ssl.enums.c b/ssl/ssl.enums.c
index 4a76035..f3f4dea 100644
--- a/ssl/ssl.enums.c
+++ b/ssl/ssl.enums.c
@@ -2969,6 +2969,7 @@ static int decode_server_name_type_host_name(ssl,dir,seg,data)
 		if (server_name != NULL)
 		{
 			if (ssl->server_name) free(ssl->server_name);
+			if (l > data->len) l = data->len;
 			memcpy(server_name,data->data,l);
 			ssl->server_name = server_name;
 		}