Project

General

Profile

Actions
Copy link

Bug #6889

closed

detect: slowdown in rule parsing

Added by Philippe Antoine over 1 year ago. Updated about 1 month ago.

Status:
Closed
Priority:
Normal
Assignee:
Philippe Antoine
Target version:
8.0.0-beta1
Affected Versions:
Effort:
Difficulty:
Label:

Description

Found by oss-fuzz, with quadfuzz:
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=67561

Found with byte_extract. keyword but I suspect other variants

I would say severity is not critical, as this is not network)based but rule-based...
What is your assessment ?

Subtasks

Actions
Copy link
 #1

Updated by OISF Ticketbot over 1 year ago

  • Subtask #6890 added
Actions
Copy link
 #2

Updated by OISF Ticketbot over 1 year ago

  • Label deleted (Needs backport to 7.0)
Actions
Copy link
 #3

Updated by Philippe Antoine over 1 year ago

  • Status changed from New to In Review

I do not think this is critical for 6

Actions
Copy link
 #5

Updated by Victor Julien over 1 year ago

  • Severity changed from MODERATE to HIGH
Actions
Copy link
 #6

Updated by Victor Julien over 1 year ago

  • Label Needs backport to 6.0 added
Actions
Copy link
 #7

Updated by OISF Ticketbot over 1 year ago

  • Subtask #6898 added
Actions
Copy link
 #8

Updated by OISF Ticketbot over 1 year ago

  • Label deleted (Needs backport to 6.0)
Actions
Copy link
 #9

Updated by Victor Julien over 1 year ago

  • Subject changed from detect: timeout in rule parsing to detect: slowdown in rule parsing
Actions
Copy link
 #10

Updated by Victor Julien over 1 year ago

  • Tracker changed from Security to Bug
  • Severity deleted (HIGH)
  • Disclosure Date deleted (06/20/2024)
Actions
Copy link
 #11

Updated by Victor Julien over 1 year ago

  • Status changed from In Review to Closed

git hash 316cc528f784c86339d05907a4d6084cbe4d44e6

Actions
Copy link
 #12

Updated by Jason Ish about 1 month ago

  • Private changed from Yes to No
Actions
Copy link

Also available in: Atom PDF