Home Explore Help
Sign In
opc-ua
/
open62541
Watch 2
Star 0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Browse Source

fix: Zero pointer access on invalid node

Fixes: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=17099
Credit to oss-fuzz
Stefan Profanter 4 years ago
parent
42a9b6a425
commit
aefbc589ee
1 changed files with 2 additions and 1 deletions
Split View Show Diff Stats
  1. 2 1
      src/server/ua_subscription_events.c

+ 2 - 1
src/server/ua_subscription_events.c
View File 

@@ -13,7 +13,8 @@
 
 UA_StatusCode
 
 UA_MonitoredItem_removeNodeEventCallback(UA_Server *server, UA_Session *session,
 
                                          UA_Node *node, void *data) {
 
-    UA_assert(node->nodeClass == UA_NODECLASS_OBJECT);
 
+    if (node->nodeClass != UA_NODECLASS_OBJECT)
 
+        return UA_STATUSCODE_BADINVALIDARGUMENT;
 
     UA_ObjectNode *on = (UA_ObjectNode*)node;
 
     UA_MonitoredItem *remove = (UA_MonitoredItem*)data;