suricata

Author	SHA1	Message	Date
Victor Julien	13cebb1857	detect: fix heap overflow issue with buffer setup In some cases, the InspectionBufferGet function would be followed by a failure to set the buffer up, for example due to a HTTP body limit not yet being reached. Yet each call to InspectionBufferGet would lead to the matching list_id to be added to the DetectEngineThreadCtx::inspect.to_clear_queue. This array is sized to add each list only once, but in this case the same id could be added multiple times, potentially overflowing the array.	5 years ago
Philippe Antoine	445e03d752	detect: null sanity checks for pkthdr Even when the rules are only applied on traffic with the protocol the structure for the protocol header can be set to NULL if there was an error parsing the header	5 years ago
Victor Julien	26bcc97515	detect/keywords: dynamic version part of doc URL	5 years ago
Philippe Antoine	02d94f5cf2	detect: fix typo for ipv6.hdr description	6 years ago
Philippe Antoine	fc48a7cebf	detect: use SC macros for IPV6 header	6 years ago
Victor Julien	24f0092b72	detect: add ipv6.hdr sticky buffer Inspects IPv6 header and extension headers.	6 years ago