mirror of
https://git.FreeBSD.org/ports.git
synced 2025-02-07 11:49:40 +00:00
23f90b9668
https://github.com/zeek/zeek/releases/tag/v4.0.6 Security fixes since 4.0.5: - Fix potential unbounded state growth in the FTP analyzer when receiving a specially-crafted stream of commands. This may lead to a buffer overflow and cause Zeek to crash. Due to the possibility of this happening with packets received from the network, this is a potential DoS vulnerabilty. Other changes: - Empty table constructors with &default attributes may cause a crash. - Fix a bug in ZAM when a function containing a loop is inlined - Fix a number of bugs with robust dictionary iteration. - Fix missing "Reporter" entries when reporting hooks via zeek. Reported by: Tim Wojtulewicz