Project

General

Profile

Actions

Security #5430

closed

Security #5399: mqtt: DOS by quadratic with too many transactions in one parse

mqtt: DOS by quadratic with too many transactions in one parse (6.0.x backport)

Added by Victor Julien over 2 years ago. Updated almost 2 years ago.

Status:
Closed
Priority:
Normal
Assignee:
Target version:
Affected Versions:
Label:
CVE:
Git IDs:
Severity:
MODERATE
Disclosure Date:
Actions #1

Updated by Victor Julien over 2 years ago

  • Subject changed from mqtt: DOS by quadratic with too many transactions in one parse (6.0.x backport) to mqtt: DOS by quadratic with too many transactions in one parse (6.0.x backport)
Actions #2

Updated by Jeff Lucovsky over 2 years ago

  • Status changed from New to In Progress
  • Assignee changed from OISF Dev to Jeff Lucovsky
Actions #3

Updated by Jeff Lucovsky over 2 years ago

  • Status changed from In Progress to In Review
Actions #4

Updated by Victor Julien about 2 years ago

  • Tracker changed from Bug to Security
  • Severity set to MODERATE
Actions #5

Updated by Philippe Antoine about 2 years ago

Not sure about this : it requires more than the last ticket backport : it requires to add the mqtt.max-tx parameter in suricata.yaml

Actions #7

Updated by Victor Julien about 2 years ago

  • Status changed from In Review to Closed
Actions #8

Updated by Victor Julien almost 2 years ago

  • Private changed from Yes to No
Actions

Also available in: Atom PDF