Project

General

Profile

Actions

Security #6931

closed

Security #6902: base64: off-by-three overflow in DecodeBase64()

base64: off-by-three overflow in DecodeBase64() (6.0.x backport)

Added by OISF Ticketbot 9 months ago. Updated 8 months ago.

Status:
Closed
Priority:
Normal
Target version:
Affected Versions:
Label:
Git IDs:
Severity:
CRITICAL
Disclosure Date:
Actions #1

Updated by Victor Julien 9 months ago

  • Severity changed from MODERATE to CRITICAL
Actions #2

Updated by Philippe Antoine 9 months ago

Severity is critical in master6, and not in later branches, because the limited overflow can overwrite different fields (in the case suricata was not built with NSS) and these fields which get used in the default configuration

Actions #3

Updated by Victor Julien 8 months ago

  • Status changed from Assigned to Resolved
Actions #4

Updated by Victor Julien 8 months ago

  • CVE set to 2024-32664
Actions #5

Updated by Victor Julien 8 months ago

  • Status changed from Resolved to Closed
Actions

Also available in: Atom PDF