Project

General

Profile

Actions
Copy link

Bug #3790

closed
JL JL

Stack overflow in DetectFlowbitsAnalyze

Bug #3790: Stack overflow in DetectFlowbitsAnalyze

Added by Jeff Lucovsky almost 6 years ago. Updated over 5 years ago.

Status:
Closed
Priority:
Normal
Assignee:
Jeff Lucovsky
Target version:
5.0.4
Affected Versions:
Effort:
Difficulty:
Label:

Description

When doing torture tests, I discovered a stack overflow in DetectFlowbitsAnalyze. I have made a PR to github @ https://github.com/OISF/suricata/pull/5103

Overflow happens when number of flowbits is sufficiently large which in turn causes array containing FBAnalyze structs to be greater than stack size.

Changeset should apply cleanly to 5.x too.

Related issues 1 (0 open1 closed)

Copied from Suricata - Bug #3783: Stack overflow in DetectFlowbitsAnalyzeClosedAntti TönkyräActions

JL Updated by Jeff Lucovsky almost 6 years ago Actions
Copy link
 #1

  • Copied from Bug #3783: Stack overflow in DetectFlowbitsAnalyze added

JL Updated by Jeff Lucovsky over 5 years ago Actions
Copy link
 #2

  • Status changed from Assigned to In Review

JL Updated by Jeff Lucovsky over 5 years ago Actions
Copy link
 #4

  • Status changed from In Review to Closed
Actions
Copy link

Also available in: PDF Atom