]> git.ipfire.org Git - thirdparty/suricata.git/commit
projects / thirdparty / suricata.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: c02d73f) | patch
decode/ipv4: add missing ip-in-ip case handling
authorJuliana Fajardini <jufajardini@oisf.net>
Fri, 13 Jun 2025 23:49:50 +0000 (20:49 -0300)
committerVictor Julien <victor@inliniac.net>
Fri, 8 Aug 2025 06:16:49 +0000 (08:16 +0200)
commit9939e29f6eb3d1161b12c6284b3bc7a54544c55b
treea538aca8a5d70c84f201bfc2733464d17a253cb6tree
parentc02d73f2165105f216a323dbdf1041550a8e9606commit | diff
decode/ipv4: add missing ip-in-ip case handling

A flow with IPv4 IP in IP traffic won't handle this tunneling case
properly.
This leads to potential malicious traffic not triggering alerts, as well
as other inaccuracies in the logs.

Bug #7725

(cherry-picked from commit e3e24cfb3d6382507aaf390bf697efae9c5f6c64)
doc/userguide/configuration/suricata-yaml.rst diff | blob | blame | history
src/decode-ipv4.c diff | blob | blame | history
src/decode-ipv4.h diff | blob | blame | history
src/decode.c diff | blob | blame | history
suricata.yaml.in diff | blob | blame | history
Mirror of https://github.com/OISF/suricata.git