FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

zeek -- potential DoS vulnerability

Affected packages
zeek < 7.0.3

Details

VuXML ID fe7031d3-3000-4b43-9fa6-52c2b624b8f9
Discovery 2024-10-05
Entry 2024-10-05

Tim Wojtulewicz of Corelight reports:

Adding to the POP3 hardening in 7.0.2, the parser now simply discards too many pending commands, rather than any attempting to process them. Further, invalid server responses do not result in command completion anymore. Processing out-of-order commands or finishing commands based on invalid server responses could result in inconsistent analyzer state, potentially triggering null pointer references for crafted traffic.

[source]

References

URL https://github.com/zeek/zeek/releases/tag/v7.0.3

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.