Mirror/zeek
1
0
Fork 0
mirror of https://github.com/zeek/zeek.git synced 2025-10-02 06:38:20 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 1
No description
5026 commits 387 branches 195 tags 255 MiB
Find a file
Jon Siwek 23989678c4 DNP3: fix reachable assertion and buffer over-read/overflow. 
A DNP3 packet using a link layer header that specifies a zero length can
trigger an assertion failure if assertions are enabled.  Assertions are
enabled unless Bro is compiled with the NDEBUG preprocessor macro
defined.  The default configuration of Bro will define this macro and so
disables assertions, but using the --enable-debug option in the
configure script will enable assertions.  When assertions are disabled,
or also for certain length values, the DNP3 parser may attempt to pass a
negative value as the third argument to memcpy (number of bytes to copy)
and result in a buffer over-read or overflow.

Reported by Travis Emmert.
2015-01-23 11:30:36 -06:00
aux Update binpac: Fix potential out-of-bounds memory reads in generated code. 2015-01-23 11:14:36 -06:00
cmake@0f301aa08a Merge remote-tracking branch 'origin/topic/jsiwek/bif-loader-scripts' 2014-04-03 15:53:46 -07:00
doc Delete prebuilt python bytecode files from git. 2015-01-23 11:09:39 -06:00
pkg Adjusting Mac binary packaging script. 2012-09-13 16:47:40 -05:00
scripts Merge remote-tracking branch 'origin/topic/dnthayer/doc-fixes-for-2.3' 2014-06-12 12:22:08 -05:00
src DNP3: fix reachable assertion and buffer over-read/overflow. 2015-01-23 11:30:36 -06:00
testing Fix possible buffer over-read in DNS TSIG parsing 2014-09-04 17:07:23 -07:00
.gitignore Ignore tmp dir. 2011-10-25 19:59:25 -07:00
.gitmodules Replace libmagic w/ Bro signatures for file MIME type identification. 2014-03-04 11:12:06 -06:00
bro-path-dev.in Flesh out Broxygen doc-gathering skeleton. 2013-10-22 14:45:47 -05:00
CHANGES DNP3: fix reachable assertion and buffer over-read/overflow. 2015-01-23 11:30:36 -06:00
CMakeLists.txt Fix build on systems that already have ntohll/htonll 2015-01-23 11:09:54 -06:00
config.h.in Fix build on systems that already have ntohll/htonll 2015-01-23 11:09:54 -06:00
configure Remove unused --with-libmagic configure option. 2014-06-11 12:10:20 -05:00
COPYING Updating copyright notice. 2013-10-07 17:06:38 -07:00
INSTALL Merge remote-tracking branch 'origin/topic/documentation' 2013-08-31 16:07:44 -07:00
Makefile Integrate new Broxygen functionality into Sphinx. 2013-11-21 14:34:32 -06:00
NEWS include a few more tls changes that we might want to mention in news 2014-05-20 09:28:33 -07:00
README Updating README with download/git information. 2013-10-25 15:06:13 -07:00
VERSION DNP3: fix reachable assertion and buffer over-read/overflow. 2015-01-23 11:30:36 -06:00

README 

============================
Bro Network Security Monitor
============================

Bro is a powerful framework for network analysis and security
monitoring. Please see the INSTALL file for installation instructions
and pointers for getting started. NEWS contains release notes for the
current version, and CHANGES has the complete history of changes.
Please see COPYING for licensing information.

You can download source and binary releases on:

    http://www.bro.org/download

To get the current development version, clone our master git
repository:

    git clone --recursive git://git.bro.org/bro

For more documentation, research publications, and community contact
information, please see Bro's home page:

    http://www.bro.org


On behalf of the Bro Development Team,

Vern Paxson & Robin Sommer,
International Computer Science Institute &
Lawrence Berkeley National Laboratory
vern@icir.org / robin@icir.org