FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

zeek -- potential DoS vulnerability

Affected packages
zeek < 6.0.3

Details

VuXML ID fedf7e71-61bd-49ec-aaf0-6da14bdbb319
Discovery 2024-01-22
Entry 2024-01-22

Tim Wojtulewicz of Corelight reports:

A specially-crafted series of packets containing nested MIME entities can cause Zeek to spend large amounts of time parsing the entities.

[source]

References

URL https://github.com/zeek/zeek/releases/tag/v6.0.3

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.