zeek -- Various vulnerabilities

2020-05-06T00:00:00
ID 1A6B7641-AED2-4BA1-96F4-C282D5B09C37
Type freebsd
Reporter FreeBSD
Modified 2020-05-06T00:00:00

Description

Jon Siwek of Corelight reports:

This release fixes the following security issues:

  Fix buffer over-read in Ident analyzer

  Fix SSL scripting error leading to uninitialized field
  access and memory leak

  Fix POP3 analyzer global buffer over-read

  Fix potential stack overflows due to use of
  Variable-Length-Arrays