Bug #5188: SSL : over allocation for certificates - Suricata - Open Information Security Foundation

Actions

Copy link

Bug #5188

closed

SSL : over allocation for certificates

Added by Philippe Antoine about 2 years ago. Updated about 2 years ago.

Status:

Closed

Priority:

Normal

Assignee:

Philippe Antoine

Target version:

7.0.0-beta1

Affected Versions:

6.0.4

Effort:

Difficulty:

Label:

Needs backport, Needs backport to 5.0, Needs backport to 6.0

Description

Found by Coverity

Untrusted allocation size (TAINTED_SCALAR)

in curr_connp->trec = SCMalloc(curr_connp->trec_len); where trec_len is a u24 read from the network, so suricata can call malloc with up to 16Mbytes even if there is no data yet to fill them...

Related issues 2 (0 open — 2 closed)

History
Notes
Property changes

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

Suricata

Custom queries

Bug #5188

SSL : over allocation for certificates

Updated by Philippe Antoine about 2 years ago

Updated by Philippe Antoine about 2 years ago

Updated by Shivani Bhardwaj about 2 years ago

Updated by Shivani Bhardwaj about 2 years ago

Updated by Victor Julien about 2 years ago