[Snort-devel] [ snort-Patches-733440 ] 1.9.1:stream4/frag2: protect vs. int overflow and log

SourceForge.net noreply at ...12...
Wed May 7 07:37:09 EDT 2003


Patches item #733440, was opened at 2003-05-06 11:21
Message generated for change (Tracker Item Submitted) made by Item Submitter
You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=303357&aid=733440&group_id=3357

Category: None
Group: None
Status: Open
Resolution: None
Priority: 5
Submitted By: Nobody/Anonymous (nobody)
Assigned to: Nobody/Anonymous (nobody)
Summary: 1.9.1:stream4/frag2: protect vs. int overflow and log

Initial Comment:
This patch addresses CORE-2003-0307, an integer
overflow in stream4.  It applies the use of
SafeMemcpy() in stream4 and frag2, and logs a message
if the function returns before memcpy().  The
vulnerability is addressed but in doing so, we return
corrupt reassembled streams and packets.  The message
log will indicate when this happens.

Submitted by:
matt-snort (at) securepipe (dot) com

----------------------------------------------------------------------

You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=303357&aid=733440&group_id=3357




More information about the Snort-devel mailing list