git.ipfire.org Git - thirdparty/suricata.git/commit

]> git.ipfire.org Git - thirdparty/suricata.git/commit

projects / thirdparty / suricata.git / commit

author	Victor Julien <victor@inliniac.net>
	Fri, 20 Sep 2019 15:12:17 +0000 (17:12 +0200)
committer	Victor Julien <victor@inliniac.net>
	Mon, 23 Sep 2019 13:42:13 +0000 (15:42 +0200)
commit	335ad2d8cc1c7dae39ee3a9f8523fd7384663465
tree	aef1b9fe601c536d572d2de570b321f9e38c5a1b	tree
parent	4ca83ca4896bbb07fff0ff8225f37a93b08c3374	commit \| diff

der/asn1: don't pass on more data than is specified

Set and Sequence parsers would pass on max available data instead
of the size of their object.

Malformed data could trigger massive recursion this way, leading
to spending much more resources than necessary.

Found using AFL.

Bug #3185.

src/util-decode-der.c

diff | blob | blame | history

Mirror of https://github.com/OISF/suricata.git

RSS Atom