8afc679517
https://github.com/zeek/zeek/releases/tag/v5.0.1 Security fixes since 5.0.0: - Fix a possible overflow and crash in the ARP analyzer when receiving a specially crafted packet. - Fix a possible overflow and crash in the Modbus analyzer when receiving a specially crafted packet. - Fix two possible crashes when converting IP headers for output via the raw_packet event. - Fix an abort related to an error related to the ordering of record fields when processing DNS EDNS headers via events Other changes: - Fix a number of typos in the weak-keys.zeek script in the SSL framework. - Fix build of internal Spicy when using the --disable-cpp-tests configure flag. - Avoid calling safe_realloc unnecessarily from ODesc::Grow(), providing a peformance improvement in some cases. - Remove use of fallible get_conn_transport_proto() in analyzer_violation event handlers. - Remove a warning when receiving packets with invalid or unknown IP protocol types, preventing it from spamming reporter.log. - Fix workers failing to peer with proxies if they take too long to start. - Fix Zeek build failures when building against an external version of Spicy. - Update Spicy to version 1.5.1 and spicy-plugin to 1.3.17. Reported by: Tim Wojtulewicz |
||
|---|---|---|
| .. | ||
| files | ||
| distinfo | ||
| Makefile | ||
| pkg-descr | ||
| pkg-plist | ||