Check for minimum length when reading certs (#61)

pkdawson · web-flow · commit 1e0f4fc24d20 · 2022-06-14T14:25:30.000-04:00
diff --git a/src/uthenticode.cpp b/src/uthenticode.cpp
@@ -409,15 +409,15 @@ std::vector<WinCert> read_certs(peparse::parsed_pe *pe) {
     offset += sizeof(type);
 
     // Continue only we can satisfy the length
-    if (current_wincert + length <= past_secdir) {
+    if (current_wincert + length <= past_secdir && length > offset) {
       std::vector<std::uint8_t> cert_data(current_wincert + offset, current_wincert + length);
 
       certs.emplace_back(static_cast<certificate_revision>(revision),
                          static_cast<certificate_type>(type),
                          cert_data);
     }
 
-    current_wincert += round(length, 8);
+    current_wincert += std::max<std::size_t>(round(length, 8), 8);
   }
 
   return certs;

Original file line number	Diff line number	Diff line change
`@@ -409,15 +409,15 @@ std::vector<WinCert> read_certs(peparse::parsed_pe *pe) {`
`409`	`409`	`offset += sizeof(type);`
`410`	`410`
`411`	`411`	`// Continue only we can satisfy the length`
`412`		`- if (current_wincert + length <= past_secdir) {`
	`412`	`+ if (current_wincert + length <= past_secdir && length > offset) {`
`413`	`413`	`std::vector<std::uint8_t> cert_data(current_wincert + offset, current_wincert + length);`
`414`	`414`
`415`	`415`	`certs.emplace_back(static_cast<certificate_revision>(revision),`
`416`	`416`	`static_cast<certificate_type>(type),`
`417`	`417`	`cert_data);`
`418`	`418`	`}`
`419`	`419`
`420`		`- current_wincert += round(length, 8);`
	`420`	`+ current_wincert += std::max<std::size_t>(round(length, 8), 8);`
`421`	`421`	`}`
`422`	`422`
`423`	`423`	`return certs;`