Actions
Bug #5144
closedFailed assert DeStateSearchState
Affected Versions:
Effort:
Difficulty:
Label:
Needs backport to 5.0, Needs backport to 6.0
Description
Found by oss-fuzz
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=44203
Minimized reproducer with rules
alert http any any -> any any (filestore; file.name; content:!"2008.mp4"; sid:2; rev:1;) alert http any any -> any any (filestore; file.name; content:!"tar.gz"; sid:3; rev:1;) alert http any any -> any any (file.name; content:"/a/expl/2008.mp4"; startswith; endswith; sid:4; rev:1;)
and attached pcap (which has HTTP with /a/expl/2008.mp4 by the way)
Victor, you added this debug validation code.
Is this a real problem ?
Files
Updated by Victor Julien over 2 years ago
- Status changed from Assigned to In Progress
- Target version changed from TBD to 7.0.0-beta1
Updated by Victor Julien over 2 years ago
- Status changed from In Progress to Closed
- Private changed from Yes to No
- Label Needs backport to 5.0, Needs backport to 6.0 added
Updated by Jeff Lucovsky over 2 years ago
- Copied to Bug #5302: Failed assert DeStateSearchState added
Updated by Jeff Lucovsky over 2 years ago
- Copied to Bug #5303: Failed assert DeStateSearchState added
Updated by Philippe Antoine over 2 years ago
- Related to Bug #5419: Failed assert DeStateSearchState added
Actions