Bug #2863: out of bounds read in detection - Suricata - Open Information Security Foundation

Actions

Copy link

Bug #2863

closed

out of bounds read in detection

Added by Victor Julien about 5 years ago. Updated about 5 years ago.

Status:

Closed

Priority:

Normal

Assignee:

Victor Julien

Target version:

4.0.7

Affected Versions:

4.0.6

Effort:

Difficulty:

Label:

Description

A rule that is not set to 'alert http' that uses a regular content match combined with a pcre with an http modifier (e.g. /U) can lead to the HTTP inspection functions accessing a non-HTTP state. This can lead to out of bounds reads and other memory issues.

History
Property changes

Actions

Copy link

Updated by Victor Julien about 5 years ago

Status changed from Assigned to Closed
Priority changed from High to Normal
Private changed from Yes to No

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

Suricata

Custom queries

Bug #2863

out of bounds read in detection

Updated by Victor Julien about 5 years ago