Project

General

Profile

Actions
Copy link

Bug #78

closed

uricontent matching regression

Added by Will Metcalf almost 15 years ago. Updated almost 15 years ago.

Status:
Closed
Priority:
High
Assignee:
Gurvinder Singh
Target version:
0.8.1
Affected Versions:
Effort:
Difficulty:
Label:

Description

The following signature fails to fire when it should processing the attached pcap.

alert tcp any any -> any any (msg:"msg escape tests"; uricontent:"blah"; sid: 100;)

GET /blah/ HTTP/1.0

User-Agent: Wget/1.11.4

Accept: */*

Host: www.google.com

Connection: Keep-Alive

Files

Download all files
suricata27.pcap (6.14 KB) suricata27.pcap pcap with request for www.google.com/blah/ Will Metcalf, 02/04/2010 07:30 PM
0001-bug-78.patch (3.08 KB) 0001-bug-78.patch Gurvinder Singh, 02/05/2010 03:52 AM

Related issues 1 (0 open1 closed)

Related to Suricata - Task #3055: Add tests for: #78 uricontent matching regressionClosedShivani BhardwajActions
Actions
Copy link

Also available in: Atom PDF