HomeFreeBSD
Diffusion FreeBSD ports repository eaf402948455

security/zeek: Update to 5.0.9
eaf402948455
Actions

Description

security/zeek: Update to 5.0.9

https://github.com/zeek/zeek/releases/tag/v5.0.9

This release fixes the following potential DoS vulnerabilities:

  • A specially-crafted series of FTP packets with a CMD command with a large path followed by a very large number of replies could cause Zeek to spend a long time processing the data.
  • A specially-crafted with a truncated header can cause Zeek to overflow memory and potentially crash.
  • A specially-crafted series of SMTP packets can cause Zeek to generate a very large number of events and take a long time to process them.
  • A specially-crafted series of POP3 packets containing MIME data can cause Zeek to spend a long time dealing with each individual file ID.

This release fixes the following bug:

  • This release includes a fixes to Zeek and updates to the Broker and Spicy submodules to support building against GCC 13.

Reported by: Tim Wojtulewicz
Security: 1ab7357f-a3c2-406a-89fb-fd00e49a71b5

(cherry picked from commit 21ea6c36f4c73c801e038519a0bed76cf212059c)

Details

Provenance
leresAuthored on May 19 2023, 5:37 PM
Parents
R11:8260d553fb6c: graphics/mesa-devel: update to 23.1.b.1727
Branches
Unknown
Tags
Unknown

Changes (2)

PathSize
security/
zeek/

R11:eaf402948455

View Options

security/zeek/Makefile

Loading...
View Options

security/zeek/distinfo

Loading...