Bug #5789: output api: int handling issue - Suricata - Open Information Security Foundation

Actions

Bug #5789

closed

output api: int handling issue

Added by Maxim Korotkov almost 3 years ago. Updated over 2 years ago.

Status:

Closed

Priority:

Normal

Assignee:

Target version:

Affected Versions:

Effort:

low

Difficulty:

Label:

C, Good First Issue

Description

https://github.com/OISF/suricata/blob/55c4834e4e9b14a441b735f84d8d35b4eb151702/src/output-tx.c#L122
A logical error may have been made here. Comparison with the upper bound of the variable type does not make sense. It may be worth adding the caste of one of the multiplication operands to the 64 bit type for avoiding overflow
Found by Security Code with Svace static analyzer

Actions

#1

Updated by Maxim Korotkov almost 3 years ago

Description updated (diff)

Actions

#2

Updated by Juliana Fajardini Reichow almost 3 years ago

PR for review: https://github.com/OISF/suricata/pull/8530

Actions

#3

Updated by Jeff Lucovsky almost 3 years ago

Status changed from New to In Review

Actions

#4

Updated by Juliana Fajardini Reichow over 2 years ago

Status changed from In Review to Closed

Merged PR: https://github.com/OISF/suricata/pull/8547

Actions

#5

Updated by Victor Julien over 2 years ago

Subject changed from Logic error to output api: int handling issue

Actions

#6

Updated by Victor Julien over 2 years ago

Target version changed from TBD to 7.0.0-rc2

Actions

Also available in: Atom PDF