Project

General

Profile

Actions
Copy link

Security #5430

closed
VJ JL

Security #5399: mqtt: DOS by quadratic with too many transactions in one parse

mqtt: DOS by quadratic with too many transactions in one parse (6.0.x backport)

Security #5430: mqtt: DOS by quadratic with too many transactions in one parse (6.0.x backport)

Added by Victor Julien almost 4 years ago. Updated over 3 years ago.

Status:
Closed
Priority:
Normal
Assignee:
Jeff Lucovsky
Target version:
6.0.7
Affected Versions:
Label:
CVE:
Git IDs:
Severity:
MODERATE
Disclosure Date:

VJ Updated by Victor Julien over 3 years ago Actions
Copy link
 #1

  • Subject changed from mqtt: DOS by quadratic with too many transactions in one parse (6.0.x backport) to mqtt: DOS by quadratic with too many transactions in one parse (6.0.x backport)

JL Updated by Jeff Lucovsky over 3 years ago Actions
Copy link
 #2

  • Status changed from New to In Progress
  • Assignee changed from OISF Dev to Jeff Lucovsky

JL Updated by Jeff Lucovsky over 3 years ago Actions
Copy link
 #3

  • Status changed from In Progress to In Review

VJ Updated by Victor Julien over 3 years ago Actions
Copy link
 #4

  • Tracker changed from Bug to Security
  • Severity set to MODERATE

PA Updated by Philippe Antoine over 3 years ago Actions
Copy link
 #5

Not sure about this : it requires more than the last ticket backport : it requires to add the mqtt.max-tx parameter in suricata.yaml

VJ Updated by Victor Julien over 3 years ago Actions
Copy link
 #7

  • Status changed from In Review to Closed

VJ Updated by Victor Julien over 3 years ago Actions
Copy link
 #8

  • Private changed from Yes to No
Actions
Copy link

Also available in: PDF Atom