From 7ae28c24cc22e27fd62921fb8ac5f098c5c3ca4e Mon Sep 17 00:00:00 2001
From: ltcdCai <weitingcai2020@gmail.com>
Date: Fri, 19 Jul 2024 20:41:08 +0200
Subject: [PATCH] Patch for CVE-2018-9988 found in mbedtls-2.6.0 scanned by
 V1SCAN

---
 .../security/mbedtls/mbedtls-2.6.0/library/ssl_cli.c           | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/Huawei_LiteOS/components/security/mbedtls/mbedtls-2.6.0/library/ssl_cli.c b/Huawei_LiteOS/components/security/mbedtls/mbedtls-2.6.0/library/ssl_cli.c
index c04c59ffd..b254ecf4a 100644
--- a/Huawei_LiteOS/components/security/mbedtls/mbedtls-2.6.0/library/ssl_cli.c
+++ b/Huawei_LiteOS/components/security/mbedtls/mbedtls-2.6.0/library/ssl_cli.c
@@ -2473,14 +2473,13 @@ static int ssl_parse_server_key_exchange( mbedtls_ssl_context *ssl )
         sig_len = ( p[0] << 8 ) | p[1];
         p += 2;
 
-        if( end != p + sig_len )
+        if( p != end - sig_len )
         {
             MBEDTLS_SSL_DEBUG_MSG( 1, ( "bad server key exchange message" ) );
             mbedtls_ssl_send_alert_message( ssl, MBEDTLS_SSL_ALERT_LEVEL_FATAL,
                                             MBEDTLS_SSL_ALERT_MSG_DECODE_ERROR );
             return( MBEDTLS_ERR_SSL_BAD_HS_SERVER_KEY_EXCHANGE );
         }
-
         MBEDTLS_SSL_DEBUG_BUF( 3, "signature", p, sig_len );
 
         /*