[IEEE 802.11] fix two potential endless loops

author Martin Kaiser <wireshark@kaiser.cx>

Wed, 8 Apr 2015 20:46:30 +0000 (22:46 +0200)

committer Martin Kaiser <wireshark@kaiser.cx>

Wed, 8 Apr 2015 20:50:48 +0000 (20:50 +0000)
author Martin Kaiser <wireshark@kaiser.cx>
Wed, 8 Apr 2015 20:46:30 +0000 (22:46 +0200)
committer Martin Kaiser <wireshark@kaiser.cx>
Wed, 8 Apr 2015 20:50:48 +0000 (20:50 +0000)
diff --git a/epan/dissectors/packet-ieee80211.c b/epan/dissectors/packet-ieee80211.c

index c8818241a34ac898a0bc6ebffde1e81ef28ea109..c57cc1ba2f2dce0fd397288057b8cfa9b4a177b5 100644 (file)
--- a/epan/dissectors/packet-ieee80211.c
+++ b/epan/dissectors/packet-ieee80211.c
@@ -12290,6 +12290,8 @@ static int dissect_tfs_request(packet_info *pinfo, proto_tree *tree,
        s_end = offset + len;
        while (s_offset < s_end) {
          int tlen = add_tagged_field(pinfo, tree, tvb, s_offset, ftype);
+        if (tlen==0)
+          break;
          s_offset += tlen;
        }
        break;
@@ -12357,6 +12359,8 @@ static int dissect_tfs_response(packet_info *pinfo, proto_tree *tree,
        s_end = offset + len;
        while (s_offset < s_end) {
          int tlen = add_tagged_field(pinfo, tree, tvb, s_offset, ftype);
+        if (tlen==0)
+          break;
          s_offset += tlen;
        }
        break;
author	Martin Kaiser <wireshark@kaiser.cx>
	Wed, 8 Apr 2015 20:46:30 +0000 (22:46 +0200)
committer	Martin Kaiser <wireshark@kaiser.cx>
	Wed, 8 Apr 2015 20:50:48 +0000 (20:50 +0000)