Project

General

Profile

Actions
Copy link

Bug #4132

closed
JL JL

Null dereference in ipv4hdr GetData

Bug #4132: Null dereference in ipv4hdr GetData

Added by Jeff Lucovsky over 5 years ago. Updated over 5 years ago.

Status:
Closed
Priority:
High
Assignee:
Jeff Lucovsky
Target version:
5.0.5
Affected Versions:
6.0.0
Effort:
Difficulty:
Label:

Description

Found by oss-fuzz
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=24288

Reproducer is
./src/suricata -r fail.pcap -S ip4hdr.rule
with ip4hdr.rule being a rule using ipv4.hdr alert ip any any -> any any (ipv4.hdr; content:"|00 00|"; offset:4; depth:2; sid:1234;)

The bug seems to be present for tcphdr as well

Files

Download all files
fail.pcap (138 Bytes) fail.pcap Philippe Antoine, 10/14/2020 07:41 PM
tcp0.pcap (250 Bytes) tcp0.pcap Philippe Antoine, 10/14/2020 07:55 PM

Related issues 1 (0 open1 closed)

Copied from Suricata - Bug #4071: Null dereference in ipv4hdr GetDataClosedPhilippe AntoineActions

JL Updated by Jeff Lucovsky over 5 years ago Actions
Copy link
 #1

  • Copied from Bug #4071: Null dereference in ipv4hdr GetData added

JL Updated by Jeff Lucovsky over 5 years ago Actions
Copy link
 #2

  • Status changed from Assigned to In Review

VJ Updated by Victor Julien over 5 years ago Actions
Copy link
 #3

  • Status changed from In Review to Closed

JL Updated by Jeff Lucovsky over 5 years ago Actions
Copy link
 #4

  • Private changed from Yes to No
Actions
Copy link

Also available in: PDF Atom