Bug #7887
open
detect/tls: zero characters in keywords such as alt name are mishandled
Added by Philippe Antoine 4 months ago.
Updated 3 days ago.
Description
See #7881 and SV test to come associated with it
Rust Cstring new fails and returns NULL ptr
solution would be to store the connp->cert0_sans_len length of each connp->cert0_sans
- Copied from Security #7881: detect/tls: keyword tls.subjectaltname leads to NULL Deref if tls.subjectaltname contains zero added
- Affected Versions 8.0.0 added
- Status changed from New to Assigned
- Assignee changed from OISF Dev to Shivani Bhardwaj
- Priority changed from Normal to High
- Label Needs backport to 8.0 added
- Label deleted (
Needs backport to 8.0)
- Status changed from Assigned to In Progress
- Subject changed from detect/tls: handle zero characters in keywords such as alt name to detect/tls: zero characters in keywords such as alt name are mishandled
By the way, I am not sure they are logged properly (not only detection problem)
Philippe Antoine wrote in #note-10:
By the way, I am not sure they are logged properly (not only detection problem)
Indeed the output is truncated at the nul byte
- Private changed from Yes to No
- Status changed from In Progress to In Review
Also available in: Atom
PDF