HomeFreeBSD
Diffusion FreeBSD ports repository 21ea6c36f4c7

security/zeek: Update to 5.0.9
21ea6c36f4c7
Actions

Description

security/zeek: Update to 5.0.9

https://github.com/zeek/zeek/releases/tag/v5.0.9

This release fixes the following potential DoS vulnerabilities:

  • A specially-crafted series of FTP packets with a CMD command with a large path followed by a very large number of replies could cause Zeek to spend a long time processing the data.
  • A specially-crafted with a truncated header can cause Zeek to overflow memory and potentially crash.
  • A specially-crafted series of SMTP packets can cause Zeek to generate a very large number of events and take a long time to process them.
  • A specially-crafted series of POP3 packets containing MIME data can cause Zeek to spend a long time dealing with each individual file ID.

This release fixes the following bug:

  • This release includes a fixes to Zeek and updates to the Broker and Spicy submodules to support building against GCC 13.

Reported by: Tim Wojtulewicz
Security: 1ab7357f-a3c2-406a-89fb-fd00e49a71b5

Details

Provenance
leresAuthored on May 19 2023, 5:37 PM
Parents
R11:bc531907561d: security/vuxml: Mark zeek < 5.0.9 as vulnerable as per:
Branches
Unknown
Tags
Unknown

Changes (2)

PathSize
security/
zeek/

R11:21ea6c36f4c7

View Options

security/zeek/Makefile

Loading...
View Options

security/zeek/distinfo

Loading...