Project

General

Profile

Actions
Copy link

Security #7613

closed
VJ PA

Security #7450: tracking: signature can allocate arbitrary amount of memory

decode_base64: signature can do large memory allocation

Security #7613: decode_base64: signature can do large memory allocation

Added by Victor Julien about 1 year ago. Updated 9 months ago.

Status:
Closed
Priority:
Normal
Assignee:
Philippe Antoine
Target version:
8.0.0-beta1
Affected Versions:
Label:
CVE:
2025-29917
Git IDs:
Severity:
HIGH
Disclosure Date:

Description

decode_base64 setting case cause large per thread allocation.

This can lead to resource starvation on systems with lower memory. Also, could lead to rule reload failures.

Subtasks 1 (0 open1 closed)

Security #7614: decode_base64: signature can do large memory allocation (7.0.x backport)ClosedPhilippe AntoineActions

OT Updated by OISF Ticketbot about 1 year ago Actions
Copy link
 #1

  • Subtask #7614 added

OT Updated by OISF Ticketbot about 1 year ago Actions
Copy link
 #2

  • Label deleted (Needs backport to 7.0)

PA Updated by Philippe Antoine about 1 year ago Actions
Copy link
 #4

  • Status changed from In Review to Resolved

32d0bd2bbb4d486623dec85a94952fde2515f2f0

PA Updated by Philippe Antoine about 1 year ago Actions
Copy link
 #5

  • Status changed from Resolved to Closed

JI Updated by Jason Ish 9 months ago Actions
Copy link
 #6

  • Private changed from Yes to No
Actions
Copy link

Also available in: PDF Atom