Bug #5789: output api: int handling issue - Suricata - Open Information Security Foundation

Actions

Bug #5789

closed

output api: int handling issue

Added by Maxim Korotkov almost 2 years ago. Updated about 1 year ago.

Status:

Closed

Priority:

Normal

Assignee:

Target version:

Affected Versions:

Effort:

low

Difficulty:

Label:

C, Good First Issue

Description

https://github.com/OISF/suricata/blob/55c4834e4e9b14a441b735f84d8d35b4eb151702/src/output-tx.c#L122
A logical error may have been made here. Comparison with the upper bound of the variable type does not make sense. It may be worth adding the caste of one of the multiplication operands to the 64 bit type for avoiding overflow
Found by Security Code with Svace static analyzer

Actions

#1

Updated by Maxim Korotkov almost 2 years ago

Description updated (diff)

Actions

#2

Updated by Juliana Fajardini Reichow over 1 year ago

PR for review: https://github.com/OISF/suricata/pull/8530

Actions

#3

Updated by Jeff Lucovsky over 1 year ago

Status changed from New to In Review

Actions

#4

Updated by Juliana Fajardini Reichow about 1 year ago

Status changed from In Review to Closed

Merged PR: https://github.com/OISF/suricata/pull/8547

Actions

#5

Updated by Victor Julien about 1 year ago

Subject changed from Logic error to output api: int handling issue

Actions

#6

Updated by Victor Julien about 1 year ago

Target version changed from TBD to 7.0.0-rc2

Actions

Also available in: Atom PDF