Project

General

Profile

Actions
Copy link

Security #5430

closed

Security #5399: mqtt: DOS by quadratic with too many transactions in one parse

mqtt: DOS by quadratic with too many transactions in one parse (6.0.x backport)

Added by Victor Julien almost 2 years ago. Updated over 1 year ago.

Status:
Closed
Priority:
Normal
Assignee:
Jeff Lucovsky
Target version:
6.0.7
Affected Versions:
Label:
CVE:
Git IDs:
Severity:
MODERATE
Disclosure Date:
Actions
Copy link
 #1

Updated by Victor Julien almost 2 years ago

  • Subject changed from mqtt: DOS by quadratic with too many transactions in one parse (6.0.x backport) to mqtt: DOS by quadratic with too many transactions in one parse (6.0.x backport)
Actions
Copy link
 #2

Updated by Jeff Lucovsky over 1 year ago

  • Status changed from New to In Progress
  • Assignee changed from OISF Dev to Jeff Lucovsky
Actions
Copy link
 #3

Updated by Jeff Lucovsky over 1 year ago

  • Status changed from In Progress to In Review
Actions
Copy link
 #4

Updated by Victor Julien over 1 year ago

  • Tracker changed from Bug to Security
  • Severity set to MODERATE
Actions
Copy link
 #5

Updated by Philippe Antoine over 1 year ago

Not sure about this : it requires more than the last ticket backport : it requires to add the mqtt.max-tx parameter in suricata.yaml

Actions
Copy link
 #7

Updated by Victor Julien over 1 year ago

  • Status changed from In Review to Closed
Actions
Copy link
 #8

Updated by Victor Julien over 1 year ago

  • Private changed from Yes to No
Actions
Copy link

Also available in: Atom PDF