Project

General

Profile

Actions
Copy link

Security #7861

closed
PA PA

detect: Dynamic-stack-buffer-overflow in ShortenString

Security #7861: detect: Dynamic-stack-buffer-overflow in ShortenString

Added by Philippe Antoine 8 months ago. Updated 6 months ago.

Status:
Closed
Priority:
Normal
Assignee:
Philippe Antoine
Target version:
8.0.1
Affected Versions:
Label:
CVE:
2025-59149
Git IDs:
Severity:
HIGH
Disclosure Date:
11/03/2025

Description

Found by oss-fuzz:
https://issues.oss-fuzz.com/u/1/issues/436119686

Not affecting 7 because there is no 29-char keyword like ldap.responsEs.attribute_type in 8

Cause of overflow is ShortenString not handling a buffer of size 0
But bigger question is why DetectBufferMpmRegistry has 2 fields name and pname ?

PA Updated by Philippe Antoine 8 months ago Actions
Copy link
 #1

  • Status changed from New to In Review

Gitlab MR

JI Updated by Jason Ish 7 months ago Actions
Copy link
 #2

  • Severity changed from MODERATE to HIGH

VJ Updated by Victor Julien 7 months ago Actions
Copy link
 #3

  • Status changed from In Review to Closed

VJ Updated by Victor Julien 7 months ago Actions
Copy link
 #4

  • CVE set to 2025-59149

VJ Updated by Victor Julien 6 months ago Actions
Copy link
 #5

  • Private changed from Yes to No
Actions
Copy link

Also available in: PDF Atom