[Oisf-devel] [COMMIT] OISF branch, master-2.0.x, updated. suricata-2.0.10

OISF Git noreply at openinfosecfoundation.org
Wed Nov 25 09:23:37 UTC 2015

This is an automated email from the git hooks/post-receive script. It was
generated because a ref change was pushed to the repository containing
the project "OISF".

The branch, master-2.0.x has been updated
       via  1431ff6fc344c7e9ec842ec74fc02559fd2d5003 (commit)
       via  a3f32ab19dda79013cf95f83d4d93f63094c974f (commit)
      from  e4023b5182c990606405302bbcef12cc8374bfed (commit)

Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.

- Log -----------------------------------------------------------------
commit 1431ff6fc344c7e9ec842ec74fc02559fd2d5003
Author: Victor Julien <victor at inliniac.net>
Date:   Wed Nov 25 09:37:40 2015 +0100

    Update changelog for 2.0.10 release

commit a3f32ab19dda79013cf95f83d4d93f63094c974f
Author: Aaron Campbell <aaron at monkey.org>
Date:   Mon Nov 2 15:19:12 2015 -0400

    Fix out-of-bounds memory access in DNS TXT record parser.
    The datalen variable is declared unsigned.  If txtlen and datalen are equal,
    datalen will first be reduced to 0, and then the datalen-- line will cause its
    value to wrap to 65535.  This will cause the loop to continue much longer than
    intended, and eventually may crash on an out-of-bounds *tdata dereference.
    Signed-off-by: Aaron Campbell <aaron at monkey.org>


Summary of changes:
 ChangeLog                  | 6 ++++++
 src/app-layer-dns-common.c | 2 +-
 2 files changed, 7 insertions(+), 1 deletion(-)


More information about the Oisf-devel mailing list