[Bro-Dev] [JIRA] (BIT-1212) Segfault in X509 file analyzer

Johanna Amann (JIRA) jira at bro-tracker.atlassian.net
Thu Sep 4 12:38:07 PDT 2014

    [ https://bro-tracker.atlassian.net/browse/BIT-1212?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17900#comment-17900 ] 

Johanna Amann commented on BIT-1212:

Bug is fixed in topic/johanna/ticket-1212, including a few other fixes that could result in wrong validation results.

If we do a .1 release, we should also include this. It should not be exploitable (in the worst case it is a 0-pointer dereference), but it makes the whole functionality completely useless.

> Segfault in X509 file analyzer
> ------------------------------
>                 Key: BIT-1212
>                 URL: https://bro-tracker.atlassian.net/browse/BIT-1212
>             Project: Bro Issue Tracker
>          Issue Type: Problem
>          Components: Bro
>    Affects Versions: 2.3
>            Reporter: Marek Balint
>            Assignee: Johanna Amann
> Bro segfaults in src/file_analysis/x509/functions.bif:256, due to base->certs being NULL.

This message was sent by Atlassian JIRA

More information about the bro-dev mailing list