CVE-2014-6603
Published: 7 October 2014
The SSHParseBanner function in SSH parser (app-layer-ssh.c) in Suricata before 2.0.4 allows remote attackers to bypass SSH rules, cause a denial of service (crash), or possibly have unspecified other impact via a crafted banner, which triggers a large memory allocation or an out-of-bounds write.
Notes
Author | Note |
---|---|
jdstrand | in 1.7 the affected code is not present and the reproducer does not work |
Priority
Status
Package | Release | Status |
---|---|---|
suricata Launchpad, Ubuntu, Debian |
lucid |
Does not exist
|
precise |
Not vulnerable
(code-not-present)
|
|
trusty |
Does not exist
(trusty was not-affected [code-not-present])
|
|
upstream |
Released
(2.0.4)
|
|
utopic |
Not vulnerable
(2.0.6-3)
|
|
vivid |
Not vulnerable
|
|
Patches: upstream: https://redmine.openinfosecfoundation.org/projects/suricata/repository/revisions/0f61264d68fdf69f44fb6f0a0d5a81248157159f |