Project

General

Profile

Actions
Copy link

Bug #5150

closed
JL JI

nfs: Integer underflow in NFS

Bug #5150: nfs: Integer underflow in NFS

Added by Jeff Lucovsky about 4 years ago. Updated about 4 years ago.

Status:
Closed
Priority:
Normal
Assignee:
Jason Ish
Target version:
5.0.9
Affected Versions:
5.0.8
Effort:
Difficulty:
Label:

Description

Found by ClusterFuzzLite, then oss-fuzz
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=44185

The whole NFSv3 logic for writes seems wrong (like ts_chunk_left should always be 0, we do not know the final size of the file)

Related issues 1 (0 open1 closed)

Copied from Suricata - Bug #5145: nfs: Integer underflow in NFSClosedVictor JulienActions

JL Updated by Jeff Lucovsky about 4 years ago Actions
Copy link
 #1

  • Copied from Bug #5145: nfs: Integer underflow in NFS added

JI Updated by Jason Ish about 4 years ago Actions
Copy link
 #2

  • Assignee changed from Jeff Lucovsky to Jason Ish

JI Updated by Jason Ish about 4 years ago Actions
Copy link
 #3

Initial PR for review: https://github.com/OISF/suricata/pull/7140 (possibly incomplete).

VJ Updated by Victor Julien about 4 years ago Actions
Copy link
 #4

  • Status changed from Assigned to Closed

VJ Updated by Victor Julien about 4 years ago Actions
Copy link
 #5

  • Affected Versions 5.0.8 added
  • Affected Versions deleted (6.0.4)
Actions
Copy link

Also available in: PDF Atom