Skip to content
Commit 2f3600ba authored by Craig Leres's avatar Craig Leres
Browse files

security/zeek: Update to 5.0.2 

    https://github.com/zeek/zeek/releases/tag/v5.0.2

Security fixes:

 - Fix a possible overflow and crash in the ICMP analyzer when
   receiving a specially crafted packet

 - Fix a possible overflow and crash in the IRC analyzer when
   receiving a specially crafted packet

 - Fix a possible overflow and crash in the SMB analyzer when
   receiving a specially crafted packet

 - Fix two possible crashes when converting IP headers for output
   via the raw_packet event

Other changes:

 - Fix a bug that prevented Broker nodes to recover from OpenSSL errors.

 - Fix handling of buffer sizes that caused Broker to stall despite
   having sufficient capacity.

 - Fix an issue with signal handling that could prevent Zeek from
   exiting via ctrl-c when reading scripts from stdin.

Also fix new PR 266345 issue reported by @pkubaj ("fails to build
without SPICY enabled").

PR:		266345
Reported by:	Tim Wojtulewicz, pkubaj
parent d14b5662
Hide whitespace changes
Inline Side-by-side
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment