[Oisf-devel] [COMMIT] OISF branch, master, updated. suricata-2.1beta3-42-ge78e33a

OISF Git noreply at openinfosecfoundation.org
Thu Feb 26 14:35:08 UTC 2015

This is an automated email from the git hooks/post-receive script. It was
generated because a ref change was pushed to the repository containing
the project "OISF".

The branch, master has been updated
       via  e78e33a428865e1317d190a299976ed0253db26e (commit)
       via  5ad7198dc0896cd832a5a54158d9ebecb953d77c (commit)
       via  67d80c36b465c2f10aba8851ba0992aea6a67ec8 (commit)
       via  e90714afd68fad6ed78233182b243437456b2d1e (commit)
       via  647985d20d7da4fb1a27c74e3c6767d54826bc8a (commit)
       via  5cd7bb2f140d03506b3280aaa71f612701d1a964 (commit)
      from  7426a9c64504ac2731c36fae23f54a1a3639b9cc (commit)

Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.

- Log -----------------------------------------------------------------
commit e78e33a428865e1317d190a299976ed0253db26e
Author: Victor Julien <victor at inliniac.net>
Date:   Wed Feb 18 23:46:19 2015 +0100

    http: add event for suspicious method delimeter
    Add event and rule for suspicious delim(s) between method and uri.
    Add unittests as well.

commit 5ad7198dc0896cd832a5a54158d9ebecb953d77c
Author: Victor Julien <victor at inliniac.net>
Date:   Wed Feb 18 16:45:20 2015 +0100

    http: add libhtp uri warning event
    Add event for libhtp warning added 0.5.17 for URI's with suspicious

commit 67d80c36b465c2f10aba8851ba0992aea6a67ec8
Author: Victor Julien <victor at inliniac.net>
Date:   Wed Feb 25 11:06:41 2015 +0100

    stream: init global config after flow engine
    Stream depends on flow engine.

commit e90714afd68fad6ed78233182b243437456b2d1e
Author: Victor Julien <victor at inliniac.net>
Date:   Fri Jan 23 13:06:44 2015 +0100

    http: remove unused and broken 'content-len' logic
    The HTTP tracking code would parse the content lenght and store it
    in the TX user data. It didn't take the possibility or errors into
    account though, leading to a possible negative int being cases to
    unsigned int. Luckily, the result was unused.
    This patch simply removes the offending code.
    Reported-by: The Yahoo pentest team

commit 647985d20d7da4fb1a27c74e3c6767d54826bc8a
Author: Victor Julien <victor at inliniac.net>
Date:   Fri Jan 23 12:12:53 2015 +0100

    dcerpc: don't exit() on malloc failure
    In 2 places we would exit() if malloc failed. We should never exit in
    such cases. This patch silently handles it.

commit 5cd7bb2f140d03506b3280aaa71f612701d1a964
Author: Victor Julien <victor at inliniac.net>
Date:   Fri Jan 23 12:09:29 2015 +0100

    dcerpc: fix error handling for alloc errors
    Fix error handling of stub parsers. In case of SCRealloc error the
    function would return a non-error code. This could possibly lead to
    memory corruption.
    Reported-By: The Yahoo pentest team


Summary of changes:
 rules/http-events.rules    |    6 ++-
 src/app-layer-dcerpc-udp.c |    5 ++-
 src/app-layer-dcerpc.c     |   39 ++++++++---------
 src/app-layer-htp.c        |  104 ++++++++++++++++++++++++++++++++++++++++----
 src/app-layer-htp.h        |    4 +-
 src/suricata.c             |    3 +-
 6 files changed, 123 insertions(+), 38 deletions(-)


More information about the Oisf-devel mailing list