zeek/testing/external/commit-hash.zeek-testing-private at a6edbf8bcdfb326033056310369cfe41630a7145 - Mirror/zeek - git.uphillsecurity.com: We code.

Mirror/zeek

mirror of https://github.com/zeek/zeek.git synced 2025-10-02 06:38:20 +00:00

Johanna Amann a6edbf8bcd Fix parsing of version field in SSLv2 client hello

It turns out that, for probably a long time, we have reported an
incorrect version when parsing an SSLv2 client hello. We always reported
this as SSLv2, no matter which version the client hello actually
contained.

This bug probably went unnoticed for a long time, as SSLv2 is
essentially unused nowadays, and as this field does not show up in the
default logs.

This was found due to a baseline difference when writing the Spicy SSL
analyzer.

2024-08-22 13:14:24 +01:00

1 line

41 B

Text

Raw Blame History

4e30d6b89edf12d99e1165fd5c5e193d1320e371