Project

General

Profile

Actions
Copy link

Bug #5529

closed
PA PA

frame: memory leak in signature parsing

Bug #5529: frame: memory leak in signature parsing

Added by Philippe Antoine over 3 years ago. Updated over 3 years ago.

Status:
Closed
Priority:
Normal
Assignee:
Philippe Antoine
Target version:
7.0.0-rc1
Affected Versions:
git main
Effort:
Difficulty:
Label:

Description

Found by oss-fuzz:
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=50889&q=label%3AProj-suricata

Reproducer is alert smb any any -> any any flow:to_client; frame:smb2.data; strip_whitespace; content:"/z4>488m"; endswith; sid:4;)

VJ Updated by Victor Julien over 3 years ago Actions
Copy link
 #1

  • Status changed from New to Assigned
  • Assignee changed from OISF Dev to Victor Julien
  • Private changed from Yes to No

PA Updated by Philippe Antoine over 3 years ago Actions
Copy link
 #2

flow:to_client; and strip_whitespace; are needed by the bug

endswith is not needed

VJ Updated by Victor Julien over 3 years ago Actions
Copy link
 #3

  • Target version changed from 7.0.0-beta1 to 8.0.0-beta1

PA Updated by Philippe Antoine over 3 years ago Actions
Copy link
 #4

Why not 7.0.rc1 ?

VJ Updated by Victor Julien over 3 years ago Actions
Copy link
 #5

  • Target version changed from 8.0.0-beta1 to 7.0.0-rc1

Accident during mass retargeting, thanks for catching this.

PA Updated by Philippe Antoine over 3 years ago Actions
Copy link
 #6

Regression range is 0bf1227f0f061930cfdb751db5f055f20fb819a7...dff7e7d34e179fc3973bde22fcca6852ada98d24

PA Updated by Philippe Antoine over 3 years ago Actions
Copy link
 #7

  • Status changed from Assigned to In Review
  • Assignee changed from Victor Julien to Philippe Antoine

PA Updated by Philippe Antoine over 3 years ago Actions
Copy link
 #8

  • Status changed from In Review to Closed
Actions
Copy link

Also available in: PDF Atom