Project

General

Profile

Actions
Copy link

Bug #7887

closed
PA SB

detect/tls: zero characters in keywords such as alt name are mishandled

Bug #7887: detect/tls: zero characters in keywords such as alt name are mishandled

Added by Philippe Antoine 7 months ago. Updated 3 months ago.

Status:
Closed
Priority:
Normal
Assignee:
Shivani Bhardwaj
Target version:
9.0.0-beta1
Affected Versions:
8.0.0
Effort:
Difficulty:
high
Label:

Description

See #7881 and SV test to come associated with it

Rust Cstring new fails and returns NULL ptr

solution would be to store the connp->cert0_sans_len length of each connp->cert0_sans

Subtasks 3 (0 open3 closed)

Bug #7982: detect/tls: zero characters in keywords such as alt name are mishandled (8.0.x backport)ClosedShivani BhardwajActions
Bug #7996: tls: certificate SAN is freed in case of any errorClosedShivani BhardwajActions
Bug #8020: tls: certificate SAN is freed in case of any error (8.0.x backport)ClosedShivani BhardwajActions

Related issues 1 (0 open1 closed)

Copied from Suricata - Security #7881: detect/tls: keyword tls.subjectaltname leads to NULL Deref if tls.subjectaltname contains zeroClosedPhilippe AntoineActions

PA Updated by Philippe Antoine 7 months ago Actions
Copy link
 #1

  • Copied from Security #7881: detect/tls: keyword tls.subjectaltname leads to NULL Deref if tls.subjectaltname contains zero added

PA Updated by Philippe Antoine 7 months ago Actions
Copy link
 #2

  • Affected Versions 8.0.0 added

SB Updated by Shivani Bhardwaj 7 months ago Actions
Copy link
 #3

  • Status changed from New to Assigned
  • Assignee changed from OISF Dev to Shivani Bhardwaj

SB Updated by Shivani Bhardwaj 6 months ago Actions
Copy link
 #4

  • Priority changed from Normal to High
  • Label Needs backport to 8.0 added

OT Updated by OISF Ticketbot 6 months ago Actions
Copy link
 #5

  • Subtask #7982 added

OT Updated by OISF Ticketbot 6 months ago Actions
Copy link
 #6

  • Label deleted (Needs backport to 8.0)

SB Updated by Shivani Bhardwaj 6 months ago Actions
Copy link
 #7

  • Subtask #7996 added

SB Updated by Shivani Bhardwaj 6 months ago Actions
Copy link
 #8

  • Status changed from Assigned to In Progress

SB Updated by Shivani Bhardwaj 5 months ago Actions
Copy link
 #9

  • Subject changed from detect/tls: handle zero characters in keywords such as alt name to detect/tls: zero characters in keywords such as alt name are mishandled

PA Updated by Philippe Antoine 5 months ago Actions
Copy link
 #10

By the way, I am not sure they are logged properly (not only detection problem)

SB Updated by Shivani Bhardwaj 5 months ago Actions
Copy link
 #11

Philippe Antoine wrote in #note-10:

By the way, I am not sure they are logged properly (not only detection problem)

Indeed the output is truncated at the nul byte

SB Updated by Shivani Bhardwaj 4 months ago Actions
Copy link
 #12

  • Private changed from Yes to No

SB Updated by Shivani Bhardwaj 4 months ago Actions
Copy link
 #13

  • Status changed from In Progress to In Review

SB Updated by Shivani Bhardwaj 4 months ago Actions
Copy link
 #14

  • Difficulty set to medium

SB Updated by Shivani Bhardwaj 3 months ago Actions
Copy link
 #15

  • Status changed from In Review to Resolved

SB Updated by Shivani Bhardwaj 3 months ago Actions
Copy link
 #16

  • Difficulty changed from medium to high

SB Updated by Shivani Bhardwaj 3 months ago Actions
Copy link
 #17

  • Status changed from Resolved to Closed
Actions
Copy link

Also available in: PDF Atom