Mirror/zeek
1
0
Fork 0
mirror of https://github.com/zeek/zeek.git synced 2025-10-09 18:18:19 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 2
No description
5409 commits 387 branches 195 tags 267 MiB
Find a file
Jon Siwek 6cedd67c38 DNP3: fix reachable assertion and buffer over-read/overflow. 
A DNP3 packet using a link layer header that specifies a zero length can
trigger an assertion failure if assertions are enabled.  Assertions are
enabled unless Bro is compiled with the NDEBUG preprocessor macro
defined.  The default configuration of Bro will define this macro and so
disables assertions, but using the --enable-debug option in the
configure script will enable assertions.  When assertions are disabled,
or also for certain length values, the DNP3 parser may attempt to pass a
negative value as the third argument to memcpy (number of bytes to copy)
and result in a buffer over-read or overflow.

Reported by Travis Emmert.
2015-01-23 11:25:00 -06:00
aux Update binpac: Fix potential out-of-bounds memory reads in generated code. 2015-01-23 10:43:28 -06:00
cmake@1316c07f70 add test trace in which DNP3 packets are over UDP; update test scripts and baseline results 2015-01-07 15:04:22 -06:00
doc Increase minimum required CMake version to 2.8. 2015-01-08 13:11:17 -06:00
man Improve man page for Bro 2014-12-04 23:46:03 -06:00
pkg Add configure options to fine tune local state dirs used by BroControl. 2014-10-30 17:11:46 -05:00
scripts Merge remote-tracking branch 'origin/fastpath' 2015-01-15 09:44:41 -08:00
src DNP3: fix reachable assertion and buffer over-read/overflow. 2015-01-23 11:25:00 -06:00
testing Merge remote-tracking branch 'origin/topic/vladg/mysql' 2015-01-14 14:21:00 -08:00
.gitignore Ignore tmp dir. 2011-10-25 19:59:25 -07:00
.gitmodules Move DataSeries and ElasticSearch into plugins. 2014-08-08 18:32:21 -07:00
bro-path-dev.in Flesh out Broxygen doc-gathering skeleton. 2013-10-22 14:45:47 -05:00
CHANGES DNP3: fix reachable assertion and buffer over-read/overflow. 2015-01-23 11:25:00 -06:00
CMakeLists.txt Increase minimum required CMake version to 2.8. 2015-01-08 13:11:17 -06:00
config.h.in Fix build on systems that already have ntohll/htonll 2014-08-22 19:56:27 -05:00
configure Add configure options to fine tune local state dirs used by BroControl. 2014-10-30 17:11:46 -05:00
COPYING Updating copyright notice. 2013-10-07 17:06:38 -07:00
INSTALL Merge remote-tracking branch 'origin/topic/documentation' 2013-08-31 16:07:44 -07:00
Makefile Changing Makefile's test-all to run test-all for broctl. 2014-12-31 09:19:09 -08:00
NEWS Add NEWS items related to file analysis changes. 2015-01-05 16:57:24 -06:00
README Updating README with download/git information. 2013-10-25 15:06:13 -07:00
VERSION DNP3: fix reachable assertion and buffer over-read/overflow. 2015-01-23 11:25:00 -06:00

README 

============================
Bro Network Security Monitor
============================

Bro is a powerful framework for network analysis and security
monitoring. Please see the INSTALL file for installation instructions
and pointers for getting started. NEWS contains release notes for the
current version, and CHANGES has the complete history of changes.
Please see COPYING for licensing information.

You can download source and binary releases on:

    http://www.bro.org/download

To get the current development version, clone our master git
repository:

    git clone --recursive git://git.bro.org/bro

For more documentation, research publications, and community contact
information, please see Bro's home page:

    http://www.bro.org


On behalf of the Bro Development Team,

Vern Paxson & Robin Sommer,
International Computer Science Institute &
Lawrence Berkeley National Laboratory
vern@icir.org / robin@icir.org