Security #7215: defrag: off by one leads to possible evasion (7.0.x backport) - Suricata - Open Information Security Foundation

Actions

Security #7215

closed

Security #7067: defrag: off by one leads to possible evasion

defrag: off by one leads to possible evasion (7.0.x backport)

Added by OISF Ticketbot 3 months ago. Updated 16 days ago.

Status:

Closed

Priority:

Normal

Assignee:

Philippe Antoine

Target version:

Affected Versions:

Label:

CVE:

Git IDs:

c9649bb920c440aa07518787e339195496a3e343

Severity:

HIGH

Disclosure Date:

Actions

#1

Updated by Philippe Antoine 2 months ago

Tracker changed from Bug to Security
Severity set to MODERATE

Actions

#2

Updated by Jason Ish about 2 months ago

Severity changed from MODERATE to HIGH

Actions

#3

Updated by Victor Julien about 2 months ago

Subject changed from defrag: DEBUG_VALIDATE_BUG_ON(len > UINT16_MAX); (7.0.x backport) to defrag: off by one leads to possible evasion (7.0.x backport)

Actions

#4

Updated by Juliana Fajardini Reichow about 2 months ago

CVE set to 2024-45796

https://github.com/OISF/suricata/security/advisories/GHSA-mf6r-3xp2-v7xg

Actions

#5

Updated by Shivani Bhardwaj about 2 months ago

Status changed from Assigned to In Review

Actions

#6

Updated by Shivani Bhardwaj about 2 months ago

Assignee changed from Victor Julien to Philippe Antoine

Actions

#7

Updated by Victor Julien about 1 month ago

Status changed from In Review to Resolved

Actions

#8

Updated by Victor Julien about 1 month ago

Status changed from Resolved to Closed
Git IDs updated (diff)

https://github.com/OISF/suricata/commit/c9649bb920c440aa07518787e339195496a3e343

Actions

#9

Updated by Victor Julien 16 days ago

Private changed from Yes to No

Actions

Also available in: Atom PDF