[Bro] Bro 2.5.2 & 2.4.2 release (security update)

Johanna Amann johanna at icir.org
Tue Jan 2 00:08:47 PST 2018

Previous message: [Bro] Calling external functions in binpac protocol parser
Next message: [Bro] Triplicate Entries in CONN Log
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> This is a security release that fixes an out-of-bound write in the ContentLine
> analyzer. This issue can be used by remote attackers to crash Bro (i.e. a DoS
> attack). There also is a possibility this can be exploited in other ways.

This has been assigned CVE-2017-1000458.

Johanna

Previous message: [Bro] Calling external functions in binpac protocol parser
Next message: [Bro] Triplicate Entries in CONN Log
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the Bro mailing list