[Oisf-devel] [COMMIT] OISF branch, master, updated. suricata-3.0-103-g5d34ac0

OISF Git noreply at openinfosecfoundation.org
Sat Mar 5 11:04:54 UTC 2016

This is an automated email from the git hooks/post-receive script. It was
generated because a ref change was pushed to the repository containing
the project "OISF".

The branch, master has been updated
       via  5d34ac071d049d5b467fe472d7ddf1be6bd6bf9f (commit)
       via  69785f186c227c44a958d3684500b5da5e1a6749 (commit)
      from  53704ea46842d850d6236495b1f448df0f483f58 (commit)

Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.

- Log -----------------------------------------------------------------
commit 5d34ac071d049d5b467fe472d7ddf1be6bd6bf9f
Author: Andreas Herz <andi at geekosphere.org>
Date:   Fri Mar 4 22:29:02 2016 +0100

    rule-parsing: remove unnecessary code
    Those lines were included former to prevent possible null pointer
    dereference but that won't happen anymore with the rest of the rework
    done in the code. The code even results in a control flow issue reported
    by coverity scan, so just remove it.

commit 69785f186c227c44a958d3684500b5da5e1a6749
Author: Alexander Gozman <a.gozman at securitycode.ru>
Date:   Fri Mar 4 16:18:46 2016 +0300

    BUG #1689: fix stack overflow when parsing variables
    Suricata crashed when variable (either address or port)
    referred to itself or if one created a looped chain of
    variables. For instance:
    Var1: "$Var2"
    Var2: "$Var3"
    Var3: "$Var1"


Summary of changes:
 src/detect-engine-address.c | 40 ++++++++++++++++++++++++++++++++--------
 src/detect-engine-port.c    | 29 ++++++++++++++++++++++-------
 src/detect-msg.c            |  4 ----
 src/util-var.c              | 40 ++++++++++++++++++++++++++++++++++++++++
 src/util-var.h              | 12 ++++++++++++
 5 files changed, 106 insertions(+), 19 deletions(-)


More information about the Oisf-devel mailing list