Project

General

Profile

Actions

Bug #5150

closed

nfs: Integer underflow in NFS

Added by Jeff Lucovsky over 2 years ago. Updated over 2 years ago.

Status:
Closed
Priority:
Normal
Assignee:
Target version:
Affected Versions:
Effort:
Difficulty:
Label:

Description

Found by ClusterFuzzLite, then oss-fuzz
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=44185

The whole NFSv3 logic for writes seems wrong (like ts_chunk_left should always be 0, we do not know the final size of the file)


Related issues 1 (0 open1 closed)

Copied from Suricata - Bug #5145: nfs: Integer underflow in NFSClosedVictor JulienActions
Actions #1

Updated by Jeff Lucovsky over 2 years ago

  • Copied from Bug #5145: nfs: Integer underflow in NFS added
Actions #2

Updated by Jason Ish over 2 years ago

  • Assignee changed from Jeff Lucovsky to Jason Ish
Actions #3

Updated by Jason Ish over 2 years ago

Initial PR for review: https://github.com/OISF/suricata/pull/7140 (possibly incomplete).

Actions #4

Updated by Victor Julien over 2 years ago

  • Status changed from Assigned to Closed
Actions #5

Updated by Victor Julien over 2 years ago

  • Affected Versions 5.0.8 added
  • Affected Versions deleted (6.0.4)
Actions

Also available in: Atom PDF