Project

General

Profile

Actions
Copy link

Bug #7814

open
JL JL

detect/entropy: entropy values can be overwritten

Bug #7814: detect/entropy: entropy values can be overwritten

Added by Jeff Lucovsky 10 months ago. Updated 7 days ago.

Status:
In Review
Priority:
Normal
Assignee:
Jeff Lucovsky
Target version:
9.0.0-beta1
Affected Versions:
8.0.0
Effort:
Difficulty:
Label:

Description

Entropy values are stored as flow variables with a name formed from the anchoring sticky buffer. When multiple rules use entropy with the same sticky buffer, values will be stored in a single variable (only one value is stored).

Unique names should be used to avoid overwriting values by combining a per-rule value with the sticky buffer, such as the signature id.

PA Updated by Philippe Antoine 10 months ago Actions
Copy link
 #1

  • Affected Versions 8.0.0 added
  • Affected Versions deleted (8.0.1)

VJ Updated by Victor Julien 9 months ago Actions
Copy link
 #2

  • Status changed from New to In Review

PA Updated by Philippe Antoine 7 days ago Actions
Copy link
 #3

  • Target version changed from TBD to 9.0.0-beta1
Actions
Copy link

Also available in: PDF Atom