[Snort-devel] [ snort-Bugs-528307 ] potential ip_len bug lurking in log.c

noreply at ...12... noreply at ...12...
Thu Mar 14 19:34:14 EST 2002


Bugs item #528307, was opened at 2002-03-10 17:28
You can respond by visiting: 
http://sourceforge.net/tracker/?func=detail&atid=103357&aid=528307&group_id=3357

Category: None
Group: None
Status: Open
Resolution: None
Priority: 5
Submitted By: Nobody/Anonymous (nobody)
Assigned to: Nobody/Anonymous (nobody)
Summary: potential ip_len bug lurking in log.c

Initial Comment:
In reviewing the snort 1.8.3 source I noticed 
potential bugs lurking in log.c, around lines 525 
through 560.  References to p->iph->ip_len are not 
converted to host order first.  The bug would occur 
when TCP, UDP, or ICMP protocol packets are received, 
and the associated header structures are missing, such 
as when a short packet or fragment is received.  This 
would make for some strange packet dumps from 
PrintNetData() or possibly crash snort.

----------------------------------------------------------------------

You can respond by visiting: 
http://sourceforge.net/tracker/?func=detail&atid=103357&aid=528307&group_id=3357




More information about the Snort-devel mailing list