Actions
Bug #7996
closed
SB
SB
Bug #7887: detect/tls: zero characters in keywords such as alt name are mishandled
tls: certificate SAN is freed in case of any error
Bug #7996:
tls: certificate SAN is freed in case of any error
Affected Versions:
Effort:
Difficulty:
low
Label:
Description
The connp object must retain all certificate params that have been parsed successfully for a match later on. In case of an error during decoding/parsing SAN are freed from connp. This works so far because it is the last field to be parsed and if it errors out, it does not exist anyway. However, this leaves room for memory errors.
SB Updated by Shivani Bhardwaj 6 months ago
- Private changed from Yes to No
SB Updated by Shivani Bhardwaj 6 months ago
- Difficulty set to low
SB Updated by Shivani Bhardwaj 6 months ago
- Status changed from Assigned to Closed
Closed by: https://github.com/OISF/suricata/pull/14051
SB Updated by Shivani Bhardwaj 6 months ago
- Status changed from Closed to Resolved
- Label Needs backport to 8.0 added
OT Updated by OISF Ticketbot 6 months ago
- Subtask #8020 added
OT Updated by OISF Ticketbot 6 months ago
- Label deleted (
Needs backport to 8.0)
SB Updated by Shivani Bhardwaj 5 months ago
- Status changed from Resolved to Closed
Actions