HomeFreeBSD
Diffusion FreeBSD ports repository 5d1eae052f89

security/zeek: Update to 4.0.6
5d1eae052f89
Actions

Description

security/zeek: Update to 4.0.6

https://github.com/zeek/zeek/releases/tag/v4.0.6

Security fixes since 4.0.5:

  • Fix potential unbounded state growth in the FTP analyzer when receiving a specially-crafted stream of commands. This may lead to a buffer overflow and cause Zeek to crash. Due to the possibility of this happening with packets received from the network, this is a potential DoS vulnerabilty.

Other changes:

  • Empty table constructors with &default attributes may cause a crash.
  • Fix a bug in ZAM when a function containing a loop is inlined
  • Fix a number of bugs with robust dictionary iteration.
  • Fix missing "Reporter" entries when reporting hooks via zeek.

Reported by: Tim Wojtulewicz

(cherry picked from commit 23f90b966845047ab40be2f9921d5d95f785d6e6)

Details

Provenance
leresAuthored on Apr 21 2022, 10:48 PM
Parents
R11:0a3f8b3d286f: science/chrono: Broken on aarch64
Branches
Unknown
Tags
Unknown

Changes (2)

PathSize
security/
zeek/

R11:5d1eae052f89

View Options

security/zeek/Makefile

Loading...
View Options

security/zeek/distinfo

Loading...