projects / suricata.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 0065929) | patch
[PATCH 1/3] dcerpc: add upper limit on stub data
authorShivani Bhardwaj <shivani@oisf.net>
Tue, 6 Jan 2026 11:14:52 +0000 (16:44 +0530)
committerAndreas Dolp <dev@andreas-dolp.de>
Sun, 22 Feb 2026 12:28:52 +0000 (13:28 +0100)
commite916274167d798da75ef8521c4302d765694d1cb
tree2eddce99f80506f826697cfa13d52a48dea2173btree | snapshot
parent00659298a29ee94c6f795cd2f728ce31465543c2commit | diff
[PATCH 1/3] dcerpc: add upper limit on stub data

DCERPC parsers had no upper bounds when it came to extending the stub
data buffer. Traffic can be crafted to bypass some internal parser
conditions to create an indefinite buffering in the stub_data array that
can make Suricata crash.

Add a default limit of 1MiB and make it configurable for the user.

Security 8182

Co-authored-by: Philippe Antoine <pantoine@oisf.net>
(cherry picked from commit e412215af990feeffbb66c7dd9f392813a20ae50)

Origin: upstream, https://github.com/OISF/suricata/commit/f82a388d0283725cb76782cf64e8341cab370830.patch
Bug: https://redmine.openinfosecfoundation.org/issues/8182
Subject: Upstream fix for CVE-2026-22258 part 1

Gbp-Pq: Name CVE-2026-22258_1.patch
rust/src/dcerpc/dcerpc.rs diff | blob | history
rust/src/dcerpc/dcerpc_udp.rs diff | blob | history
rust/src/smb/dcerpc.rs diff | blob | history
rust/src/smb/smb.rs diff | blob | history
suricata.yaml.in diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.