zeek/testing/external/commit-hash.zeek-testing at a6edbf8bcdfb326033056310369cfe41630a7145 - Mirror/zeek - git.uphillsecurity.com: We code.

Mirror/zeek

mirror of https://github.com/zeek/zeek.git synced 2025-10-02 06:38:20 +00:00

Johanna Amann a6edbf8bcd Fix parsing of version field in SSLv2 client hello

It turns out that, for probably a long time, we have reported an
incorrect version when parsing an SSLv2 client hello. We always reported
this as SSLv2, no matter which version the client hello actually
contained.

This bug probably went unnoticed for a long time, as SSLv2 is
essentially unused nowadays, and as this field does not show up in the
default logs.

This was found due to a baseline difference when writing the Spicy SSL
analyzer.

2024-08-22 13:14:24 +01:00

1 line

41 B

Text

Raw Blame History

df37cbcef57db5aeb09da8045deed0141d471507