Actions
Bug #2863
closedout of bounds read in detection
Affected Versions:
Effort:
Difficulty:
Label:
Description
A rule that is not set to 'alert http' that uses a regular content match combined with a pcre with an http modifier (e.g. /U) can lead to the HTTP inspection functions accessing a non-HTTP state. This can lead to out of bounds reads and other memory issues.
Updated by Victor Julien almost 6 years ago
- Status changed from Assigned to Closed
- Priority changed from High to Normal
- Private changed from Yes to No
Actions