https://redmine.openinfosecfoundation.org/
https://redmine.openinfosecfoundation.org/favicon.ico?1701117002
2021-05-31T15:40:13Z
Open Information Security Foundation
Suricata - Bug #4503: Buffer overflow in "by_rule" threshold context
https://redmine.openinfosecfoundation.org/issues/4503?journal_id=20016
2021-05-31T15:40:13Z
Philippe Antoine
<ul></ul><p>Just adding the stack trace<br /><pre>
==16985==ERROR: AddressSanitizer: heap-buffer-overflow on address 0x60200002bf68 at pc 0x00010f057b66 bp 0x700000266830 sp 0x700000266828
READ of size 8 at 0x60200002bf68 thread T3
#0 0x10f057b65 in ThresholdHandlePacketRule detect-engine-threshold.c:580
#1 0x10f05706e in PacketAlertThreshold detect-engine-threshold.c:639
#2 0x10f013028 in PacketAlertHandle detect-engine-alert.c:116
#3 0x10f01259c in PacketAlertFinalize detect-engine-alert.c:260
#4 0x10efcfb2b in DetectRunPostRules detect.c:939
#5 0x10efcc1d2 in DetectRun detect.c:141
#6 0x10efcb727 in Detect detect.c:1672
#7 0x10f114654 in FlowWorker flow-worker.c:540
#8 0x10f208b2e in TmThreadsSlotVarRun tm-threads.c:117
#9 0x10f210803 in TmThreadsSlotVar tm-threads.c:452
#10 0x7fff5000e660 in _pthread_body (libsystem_pthread.dylib:x86_64+0x3660)
#11 0x7fff5000e50c in _pthread_start (libsystem_pthread.dylib:x86_64+0x350c)
#12 0x7fff5000dbf8 in thread_start (libsystem_pthread.dylib:x86_64+0x2bf8)
</pre></p>
Suricata - Bug #4503: Buffer overflow in "by_rule" threshold context
https://redmine.openinfosecfoundation.org/issues/4503?journal_id=20064
2021-06-07T06:41:50Z
Victor Julien
victor@inliniac.net
<ul><li><strong>Status</strong> changed from <i>New</i> to <i>Closed</i></li><li><strong>Target version</strong> set to <i>7.0.0-beta1</i></li><li><strong>Label</strong> <i>Needs backport to 5.0, Needs backport to 6.0</i> added</li></ul><p><a class="external" href="https://github.com/OISF/suricata/pull/6151">https://github.com/OISF/suricata/pull/6151</a></p>
Suricata - Bug #4503: Buffer overflow in "by_rule" threshold context
https://redmine.openinfosecfoundation.org/issues/4503?journal_id=20066
2021-06-07T12:01:14Z
Jeff Lucovsky
<ul><li><strong>Copied to</strong> <i><a class="issue tracker-1 status-5 priority-4 priority-default closed" href="/issues/4518">Bug #4518</a>: Buffer overflow in "by_rule" threshold context</i> added</li></ul>
Suricata - Bug #4503: Buffer overflow in "by_rule" threshold context
https://redmine.openinfosecfoundation.org/issues/4503?journal_id=20068
2021-06-07T12:01:33Z
Jeff Lucovsky
<ul><li><strong>Copied to</strong> <i><a class="issue tracker-1 status-6 priority-4 priority-default closed" href="/issues/4519">Bug #4519</a>: Buffer overflow in "by_rule" threshold context</i> added</li></ul>
Suricata - Bug #4503: Buffer overflow in "by_rule" threshold context
https://redmine.openinfosecfoundation.org/issues/4503?journal_id=20289
2021-07-02T12:53:00Z
Victor Julien
victor@inliniac.net
<ul><li><strong>Has duplicate</strong> <i><a class="issue tracker-1 status-5 priority-4 priority-default closed" href="/issues/4514">Bug #4514</a>: Suricata 6.0.2 segfault</i> added</li></ul>