Project

General

Profile

Actions

Bug #3897

closed

Integer overflow in SCSigOrderByPriorityCompare

Added by Philippe Antoine over 4 years ago. Updated over 4 years ago.

Status:
Closed
Priority:
Normal
Target version:
Affected Versions:
Effort:
Difficulty:
Label:
Needs backport, Needs backport to 4.1, Needs backport to 5.0

Description

Found by oss-fuzz :
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=24731

The computation sw2->sig->prio - sw1->sig->prio should check for overflows


Related issues 2 (0 open2 closed)

Copied to Suricata - Bug #3934: Integer overflow in SCSigOrderByPriorityCompareClosedShivani BhardwajActions
Copied to Suricata - Bug #3935: Integer overflow in SCSigOrderByPriorityCompareClosedJeff LucovskyActions
Actions #1

Updated by Philippe Antoine over 4 years ago

  • Status changed from Assigned to In Review
  • Target version set to 6.0.0rc1

Gitlab PR

Actions #2

Updated by Victor Julien over 4 years ago

  • Assignee set to Philippe Antoine
  • Private changed from Yes to No
  • Affected Versions 4.1.8, 5.0.3, 6.0.0beta1 added
  • Label Needs backport to 4.1, Needs backport to 5.0 added
Actions #4

Updated by Jeff Lucovsky over 4 years ago

  • Copied to Bug #3934: Integer overflow in SCSigOrderByPriorityCompare added
Actions #5

Updated by Jeff Lucovsky over 4 years ago

  • Copied to Bug #3935: Integer overflow in SCSigOrderByPriorityCompare added
Actions

Also available in: Atom PDF