From cf5df96c149e8e57e8254afa5d0ff55dad336347 Mon Sep 17 00:00:00 2001
From: akallabeth <akallabeth@posteo.net>
Date: Thu, 11 Apr 2024 12:35:39 +0200
Subject: [PATCH] [coverity] 1543228 Out-of-bounds read

---
 libfreerdp/core/security.c | 1 +
 1 file changed, 1 insertion(+)

diff --git a/libfreerdp/core/security.c b/libfreerdp/core/security.c
index 653bf0a5b..96cf00baf 100644
--- a/libfreerdp/core/security.c
+++ b/libfreerdp/core/security.c
@@ -592,6 +592,7 @@ static void fips_expand_key_bits(const BYTE* in, size_t in_len, BYTE* out, size_
 		}
 		else
 		{
+			WINPR_ASSERT(p + 1 < sizeof(buf));
 			/* c is accumulator */
 			BYTE c = (BYTE)(buf[p] << r) & 0xFF;
 			c |= buf[p + 1] >> (8 - r);