Actions
Security #7067
closeddefrag: off by one leads to possible evasion
Git IDs:
Severity:
HIGH
Disclosure Date:
09/04/2024
Description
Found by oss-fuzz
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=69475
Regression on 26th of April cf https://github.com/OISF/suricata/compare/ad4185b3c4fdcdfd0eac44a5ddf6bc7484c35bda...4fedba11404ea6548fd2ed319adf4b78a56180b4
Victor, I leave you this new one, cc @Jason Ish
Files
Updated by Philippe Antoine 6 months ago
Ouch `tracker->ip_hdr_offset` 4 is greater than GET_PKT_LEN(r)
0
Updated by Philippe Antoine 6 months ago
- File lol.pcap added
The pcap does trigger only on fuzz_decodepcapfile, not on suricata
Updated by Philippe Antoine 4 months ago
- Tracker changed from Bug to Security
- Severity set to MODERATE
- Disclosure Date set to 09/04/2024
Updated by Victor Julien 3 months ago
- Assignee changed from Victor Julien to Philippe Antoine
Updated by Victor Julien 3 months ago
- Severity changed from MODERATE to HIGH
HIGH as it could potentially lead to loss of visibility, and thus policy bypass.
Updated by Victor Julien 3 months ago
- Subject changed from defrag: DEBUG_VALIDATE_BUG_ON(len > UINT16_MAX); to defrag: off by one leads to possible evasion
Updated by Juliana Fajardini Reichow 3 months ago
- CVE set to 2024-45796
Updated by Philippe Antoine 2 months ago
- Status changed from In Review to Closed
Actions