SZ Sergey Zhidkih
- Login: Rx1513
- Registered on: 09/30/2025
- Last sign in: 03/23/2026
Issues
| open | closed | Total | |
|---|---|---|---|
| Assigned issues | 1 | 3 | 4 |
| Reported issues | 4 | 2 | 6 |
Projects
| Project | Roles | Registered on |
|---|---|---|
| Suricata | Developer | 12/02/2025 |
| Suricata-Update | Developer | 12/02/2025 |
Activity
03/06/2026
- SZ 03:20 PM Suricata Bug #8353 (New): Underflow in TmqhOutputPacketpool when calculating "outstanding"
- Fuzzer discovered case when "outstanding" become negative and thus underflows. Not sure if it's an actual bug by itself but since outstanding is unsigned integer it may point to some problem.
Attaching fuzzer backtrace and case.
01/16/2026
- SZ 02:17 PM Suricata Bug #8232 (New): Underflow in DefragInsertFrag in defrag.c
- During fuzzing, an underflow was discovered in ip defragmentation algorithm for the first fragment.
01/15/2026
- SZ 03:34 PM Suricata Bug #8184 (In Review): Loop counters underflows across codebase
01/05/2026
- SZ 03:46 PM Suricata Bug #8184: Loop counters underflows across codebase
- Victor Julien wrote in #note-1:
> Hi Sergey, you mention that "So I fixed all of them". Where did you fix this?
I haven't created a pull request for review yet since I'm on vacation right now. I will create a PR closer to the end of ...
12/29/2025
- SZ 12:28 PM Suricata Bug #8184 (In Review): Loop counters underflows across codebase
- During the fuzzing of sigpcap for 7.10.0, multiple occurrences of loop counter underflow were detected.
After investigation, it was determined that the issue affected 11 source code files.
Most of the loops contained underflow afte...
12/01/2025
- SZ 02:01 PM Suricata Bug #8146: utils-spm-hs: missing deallocators on hs_compile failure
- May I claim this issue and get developer role?
- SZ 01:38 PM Suricata Bug #8146 (Closed): utils-spm-hs: missing deallocators on hs_compile failure
- During fuzzing siginit discovered two minor memory leaks in HSBuildDatabase which is caused by missing deallocators when Hyperscan fails to compile expression.
The problem is missing deallocator for expression and missing deallocator ...
11/27/2025
- SZ 02:58 PM Suricata Security #8143: Misalligned access to ip header data.
- Victor Julien wrote in #note-2:
> All platforms we care about support unaligned access. There may be a small perf penalty but so would there be with memcpy. The claim of DoS is not backup up by any data.
Can you list all mainly suppo... - SZ 09:49 AM Suricata Security #8143 (Rejected): Misalligned access to ip header data.
- During fuzz session with enabled undefined sanitizer, fuzz_sigpcap discovered misaligned access to ip header data.
The core reason is that access to ip header data is determined by protocol and not by memory access rules.
For example...
09/30/2025
- SZ 07:02 PM Suricata Security #7966 (Assigned): Relevance of QA UBSan article
- I fuzz suricata 7.0.10 and recently I decided to enable some of undefined behavior sanitizers which led to a bunch of errors (mostly integer overflow). So I was looking for similar exsting issues and found QA "UBSan":https://redmine.open...