Project

General

Profile

Actions
Copy link

Bug #3726

closed

Segmentation fault on rule reload when using libmagic

Added by Angelo Mirabella over 4 years ago. Updated about 4 years ago.

Status:
Closed
Priority:
Normal
Assignee:
Angelo Mirabella
Target version:
6.0.1
Affected Versions:
4.1.8
Effort:
medium
Difficulty:
medium
Label:
Needs backport to 4.1, Needs backport to 5.0

Description

If libmagic is enabled and there are signature using libmagic, rule reloading causes a segmentation fault on the next file matching the rule.
This is due to an improper reinitialization of the thread contexts.
In attachment there are a sample stack trace and a sample rule file.

Files

Download all files
stack_trace (52.8 KB) stack_trace Angelo Mirabella, 05/26/2020 04:48 PM
test.rules (1.18 KB) test.rules Angelo Mirabella, 05/26/2020 04:50 PM
suricata_testcase.zip (178 KB) suricata_testcase.zip Angelo Mirabella, 05/28/2020 10:54 PM
build-info.txt (3.82 KB) build-info.txt Angelo Mirabella, 05/28/2020 10:55 PM

Related issues 2 (0 open2 closed)

Copied to Suricata - Bug #4133: Segmentation fault on rule reload when using libmagicClosedJeff LucovskyActions
Copied to Suricata - Bug #4134: Segmentation fault on rule reload when using libmagicRejectedShivani BhardwajActions
Actions
Copy link

Also available in: Atom PDF