Project

General

Profile

Actions

Bug #6846

closed

alerts: wrongly using tx id 0 when there is no tx

Added by Philippe Antoine 9 months ago. Updated 5 months ago.

Status:
Closed
Priority:
Normal
Target version:
Affected Versions:
Effort:
Difficulty:
Label:

Description

Found by oss-fuzz:
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=64345&q=label%3AProj-suricata&can=2

cf #6770

This leads to quadratic complexity arbitrary length value being logged an arbitrary number of times because we lof tx id 0 data when there is no data


Subtasks 2 (0 open2 closed)

Bug #6847: alerts: wrongly using tx id 0 when there is no tx (6.0.x backport)RejectedActions
Bug #6848: alerts: wrongly using tx id 0 when there is no tx (7.0.x backport)ClosedPhilippe AntoineActions

Related issues 3 (0 open3 closed)

Related to Suricata - Security #6900: http2: timeout logging headersClosedPhilippe AntoineActions
Related to Suricata - Bug #6973: detect: log relevant frames app-layer metdataClosedPhilippe AntoineActions
Related to Suricata - Task #7350: firewall usecase: log app-layer metadata for for catch-all drop rulesClosedOISF DevActions
Actions #2

Updated by OISF Ticketbot 9 months ago

  • Subtask #6847 added
Actions #3

Updated by OISF Ticketbot 9 months ago

  • Label deleted (Needs backport to 6.0)
Actions #4

Updated by OISF Ticketbot 9 months ago

  • Subtask #6848 added
Actions #5

Updated by OISF Ticketbot 9 months ago

  • Label deleted (Needs backport to 7.0)
Actions #6

Updated by Philippe Antoine 9 months ago

  • Status changed from New to In Review

Gitlab MR

Actions #7

Updated by Victor Julien 9 months ago

  • Tracker changed from Security to Bug
  • Severity deleted (HIGH)
  • Disclosure Date deleted (02/19/2024)
Actions #8

Updated by Philippe Antoine 9 months ago

Actions #10

Updated by Philippe Antoine 8 months ago

  • Status changed from In Review to Resolved
Actions #12

Updated by Philippe Antoine 8 months ago

Still https://github.com/OISF/suricata/pull/10924 to complete first merge

Actions #13

Updated by Juliana Fajardini Reichow 8 months ago

  • Related to Bug #6973: detect: log relevant frames app-layer metdata added
Actions #14

Updated by Philippe Antoine 7 months ago

  • Status changed from Resolved to Closed
Actions #15

Updated by Victor Julien 5 months ago

  • Private changed from Yes to No
Actions #16

Updated by Jason Ish about 2 months ago

  • Related to Task #7350: firewall usecase: log app-layer metadata for for catch-all drop rules added
Actions

Also available in: Atom PDF