Open Information Security Foundation

02/07/2023

10:42 AM Suricata Security #5851 (New): Rust: handle allocation failures

Not sure of the category...
Currently, an allocation failure leads to panic and process ending, C handles it bette... Philippe Antoine

02/03/2023

05:07 PM Suricata Bug #5850: frames: Assertion failed: buffer initialized

The first rule make redmine go 500 Philippe Antoine

05:05 PM Suricata Bug #5850: frames: Assertion failed: buffer initialized

alert smb any any -> any any (flow:to_server; frame:smb2.data; content:!"|FE|SMB"; startswith; sid:6;)
alert dcerpc ... Philippe Antoine

05:04 PM Suricata Bug #5850: frames: Assertion failed: buffer initialized

@./src/suricata -S repro.rules -k none -c suricata.yaml --set stream.midstream=true -r repro2.pcap@ gets the assert... Philippe Antoine

05:04 PM Suricata Bug #5850: frames: Assertion failed: buffer initialized

Regression range is https://github.com/OISF/suricata/compare/c1c67536b6c7c1ff9fa12327e4e0d109071c372f...9e41075d5da64... Philippe Antoine

05:02 PM Suricata Bug #5850 (Closed): frames: Assertion failed: buffer initialized

Found by oss-fuzz:
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=55542&q=label%3AProj-suricata Philippe Antoine

02/02/2023

05:54 PM Suricata Optimization #2321: yaml: clean up usage of lists

Make @outputs.1.eve-log.types.6.files.force-hash=sha256@ simpler for the user Philippe Antoine

04:57 PM Suricata Bug #5834: tcp/regions: list corruption

Found by oss-fuzz as https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=55574&q=label%3AProj-suricata Philippe Antoine

04:56 PM Suricata Bug #5834: tcp/regions: list corruption

Reproducer works with fuzzing configuration... Philippe Antoine

04:41 PM Suricata Feature #5845 (New): smb: Support SMB_COM_SESSION_SETUP_ANDX Request

If word count is 13
https://learn.microsoft.com/en-us/openspecs/windows_protocols/ms-cifs/81e15dee-8fb6-4102-8644-7e... Philippe Antoine