Actions
Bug #3790
closedStack overflow in DetectFlowbitsAnalyze
Affected Versions:
Effort:
Difficulty:
Label:
Description
When doing torture tests, I discovered a stack overflow in DetectFlowbitsAnalyze. I have made a PR to github @ https://github.com/OISF/suricata/pull/5103
Overflow happens when number of flowbits is sufficiently large which in turn causes array containing FBAnalyze structs to be greater than stack size.
Changeset should apply cleanly to 5.x too.
Updated by Jeff Lucovsky over 4 years ago
- Copied from Bug #3783: Stack overflow in DetectFlowbitsAnalyze added
Updated by Jeff Lucovsky over 4 years ago
- Status changed from Assigned to In Review
Updated by Jeff Lucovsky over 4 years ago
Updated by Jeff Lucovsky over 4 years ago
- Status changed from In Review to Closed
Actions