Bug #3653: Recursion stack-overflow in parsing YAML configuration - Suricata - Open Information Security Foundation

Actions

Copy link

Bug #3653

closed

Recursion stack-overflow in parsing YAML configuration

Added by Jeff Lucovsky about 4 years ago. Updated almost 4 years ago.

Status:

Closed

Priority:

Normal

Assignee:

Jeff Lucovsky

Target version:

5.0.3

Affected Versions:

Effort:

Difficulty:

Label:

Description

A YAML configuration can be crafted (for example, by a fuzzer) that causes the YAML parser to recurse to a depth where a stack-overflow occurs. This appears to be at about 180. Our default configuration goes to a depth of about 16.

Suggested fix: track the recursion limit and abort at some level, for example 128 should be OK.

Longer term fix if we every have a config that needs more recursion would be to refactor into a loop.

Related issues 1 (0 open — 1 closed)

History
Notes
Property changes

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

Suricata

Custom queries

Bug #3653

Recursion stack-overflow in parsing YAML configuration

Updated by Jeff Lucovsky about 4 years ago

Updated by Jeff Lucovsky about 4 years ago

Updated by Jeff Lucovsky almost 4 years ago