ble-nrf51822 icon indicating copy to clipboard operation
ble-nrf51822 copied to clipboard

Published 20 hours ago verified publisher icon ARMmbed

It is possible to overflow a descriptor capacity

Open pan- opened this issue 8 years ago • 1 comments

If a characteristic descriptor has been instantiated with a fixed size, it should not be possible for a client to write this descriptor with a value longer than what has been provisioned.

Unfortunately, it is possible for a client to write 5 bytes in a descriptor even if the descriptor size is 4 bytes.

Reproducible by running DescriptorReadWrite_test_09.

pan- avatar Mar 18 '16 16:03 pan-

ARM Internal Ref: IOTSFW-2378

ciarmcom avatar Mar 18 '16 16:03 ciarmcom