[Bro-Dev] [JIRA] (BIT-1212) Segfault in X509 file analyzer
Johanna Amann (JIRA)
jira at bro-tracker.atlassian.net
Thu Sep 4 12:38:07 PDT 2014
[ https://bro-tracker.atlassian.net/browse/BIT-1212?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17900#comment-17900 ]
Johanna Amann commented on BIT-1212:
------------------------------------
Bug is fixed in topic/johanna/ticket-1212, including a few other fixes that could result in wrong validation results.
If we do a .1 release, we should also include this. It should not be exploitable (in the worst case it is a 0-pointer dereference), but it makes the whole functionality completely useless.
> Segfault in X509 file analyzer
> ------------------------------
>
> Key: BIT-1212
> URL: https://bro-tracker.atlassian.net/browse/BIT-1212
> Project: Bro Issue Tracker
> Issue Type: Problem
> Components: Bro
> Affects Versions: 2.3
> Reporter: Marek Balint
> Assignee: Johanna Amann
>
> Bro segfaults in src/file_analysis/x509/functions.bif:256, due to base->certs being NULL.
--
This message was sent by Atlassian JIRA
(v6.4-OD-04-006#64001)
More information about the bro-dev
mailing list