Actions
Bug #5192
closedSSL : over allocation for certificates
Affected Versions:
Effort:
Difficulty:
Label:
Description
Found by Coverity
Untrusted allocation size (TAINTED_SCALAR)
in curr_connp->trec = SCMalloc(curr_connp->trec_len);
where trec_len is a u24 read from the network, so suricata can call malloc with up to 16Mbytes even if there is no data yet to fill them...
Updated by Shivani Bhardwaj almost 3 years ago
- Copied from Bug #5188: SSL : over allocation for certificates added
Updated by Shivani Bhardwaj over 2 years ago
- Status changed from Assigned to In Review
Updated by Shivani Bhardwaj over 2 years ago
- Status changed from In Review to Closed
Closed by: https://github.com/OISF/suricata/pull/7206
Actions