aiden
/
suricata
mirror of https://github.com/OISF/suricata
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

radix-tree - prevent out of bounds array access

Browse Source 
An IPv6 entry specified before an IPv4 entry on the host-os-policy
table can cause the stream byte array to be access one byte after
the end of the allocated memory at util-radix-tree.c:578.
pull/1492/merge
Jason Ish 10 years ago committed by Victor Julien
parent 3e5b8f48b1
commit 56f6e37304
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File

2
src/util-radix-tree.c
Unescape Escape View File

@ -570,7 +570,7 @@ static SCRadixNode *SCRadixAddKey(uint8_t *key_stream, uint16_t key_bitlen,
* down along one of the paths, since either paths should end up with a
* node that has a common prefix whose differ bit is greater than the
* bitlen of the incoming prefix */
if (bitlen < node->bit) {
if (bitlen <= node->bit) {
if (node->right == NULL)
break;
node = node->right;

Write Preview
Loading…
Cancel
Save