Project

General

Profile

Actions
Copy link

Bug #3898

closed
PA PA

Leak from bad signature with DCERPC keyword, then another protocol keyword

Bug #3898: Leak from bad signature with DCERPC keyword, then another protocol keyword

Added by Philippe Antoine over 5 years ago. Updated over 4 years ago.

Status:
Closed
Priority:
Normal
Assignee:
Philippe Antoine
Target version:
6.0.0rc1
Affected Versions:
Effort:
Difficulty:
Label:
Needs backport

Description

Found by oss-fuzz
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=24715

Reproducer is
alert tcp any any -> any any dce_stub_data; content:"|32|"; offset:1; tls.cert_serial; content:"o";

Related issues 2 (0 open2 closed)

Copied to Suricata - Bug #3932: Leak from bad signature with DCERPC keyword, then another protocol keywordClosedShivani BhardwajActions
Copied to Suricata - Bug #3933: Leak from bad signature with DCERPC keyword, then another protocol keywordClosedJeff LucovskyActions

PA Updated by Philippe Antoine over 5 years ago Actions
Copy link
 #1

  • Status changed from Assigned to In Review

Gitlab PR

JL Updated by Jeff Lucovsky over 5 years ago Actions
Copy link
 #3

  • Copied to Bug #3932: Leak from bad signature with DCERPC keyword, then another protocol keyword added

JL Updated by Jeff Lucovsky over 5 years ago Actions
Copy link
 #4

  • Copied to Bug #3933: Leak from bad signature with DCERPC keyword, then another protocol keyword added

VJ Updated by Victor Julien over 4 years ago Actions
Copy link
 #5

  • Private changed from Yes to No
Actions
Copy link

Also available in: PDF Atom