1
0
mirror of https://git.FreeBSD.org/ports.git synced 2024-12-21 04:06:46 +00:00
freebsd-ports/security/bro
Craig Leres 9b93fbb32b Update to 2.5.5 which addresses security issues:
- Fix array bounds checking in BinPAC: for arrays that are
      fields within a record, the bounds check was based on a pointer
      to the start of the record rather than the start of the array
      field, potentially resulting in a buffer over-read.

    - Fix SMTP command string comparisons: the number of bytes
      compared was based on the user-supplied string length and can
      lead to incorrect matches. e.g. giving a command of "X"
      incorrectly matched "X-ANONYMOUSTLS" (and an empty commands
      match anything).

    - Weird" events are now generally suppressed/sampled by default
      according to some tunable parameters.

    - Improved handling of empty lines in several text protocol
      analyzers that can cause performance issues when seen in long
      sequences.

    - Add `smtp_excessive_pending_cmds' weird which serves as a
      notification for when the "pending command" queue has reached
      an upper limit and been cleared to prevent one from attempting
      to slowly exhaust memory.

Approved by: ler (mentor, implicit)
MFH: 2018Q3
Security: d0be41fe-2a20-4633-b057-4e8b25c41780
2018-08-30 00:13:32 +00:00
..
files
distinfo Update to 2.5.5 which addresses security issues: 2018-08-30 00:13:32 +00:00
Makefile Update to 2.5.5 which addresses security issues: 2018-08-30 00:13:32 +00:00
pkg-descr - Update WWW 2017-09-20 09:01:54 +00:00
pkg-plist Update to 2.5.5 which addresses security issues: 2018-08-30 00:13:32 +00:00