[Oisf-devel] [COMMIT] OISF branch, master, updated. suricata-3.0.1RC1-27-gf9ac42b

OISF Git noreply at openinfosecfoundation.org
Thu Mar 31 20:02:51 UTC 2016

This is an automated email from the git hooks/post-receive script. It was
generated because a ref change was pushed to the repository containing
the project "OISF".

The branch, master has been updated
       via  f9ac42b36f0dab7cf9325202425f20ef4ca0ebfe (commit)
       via  c0dd91159103e0be75cb53b2562acad992171ded (commit)
       via  d07c495ed1a3f7d427ae0db604771ce935a1ccaf (commit)
      from  ba035e601e6f5d56a9ce2c5bbb4bb2c2c80d2eca (commit)

Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.

- Log -----------------------------------------------------------------
commit f9ac42b36f0dab7cf9325202425f20ef4ca0ebfe
Author: Mats Klepsland <mats.klepsland at gmail.com>
Date:   Thu Mar 31 16:15:26 2016 +0200

    util-decode-der: fix NULL dereference bug
    Make sure that the length is not longer than the size of the buffer

commit c0dd91159103e0be75cb53b2562acad992171ded
Author: Mats Klepsland <mats.klepsland at gmail.com>
Date:   Thu Mar 31 14:28:24 2016 +0200

    util-decode-der: fix heap-buffer-overflow

commit d07c495ed1a3f7d427ae0db604771ce935a1ccaf
Author: Mats Klepsland <mats.klepsland at gmail.com>
Date:   Thu Mar 31 14:21:21 2016 +0200

    app-layer-tls-handshake: fix heap-buffer overflow
    Fix heap-buffer overflow that occurs when we are given repeatedly
    certificates with the length of zero.


Summary of changes:
 src/app-layer-tls-handshake.c | 13 +++++++++++++
 src/util-decode-der.c         |  9 +++++++++
 2 files changed, 22 insertions(+)


More information about the Oisf-devel mailing list