CVE-2019-15699

An issue was discovered in app-layer-ssl.c in Suricata 4.1.4. Upon receiving a corrupted SSLv3 (TLS 1.2) packet, the parser function TLSDecodeHSHelloExtensions tries to access a memory region that is not allocated, because the expected length of HSHelloExtensions does not match the real length of the HSHelloExtensions part of the packet.
Configurations

Configuration 1

cpe:2.3:a:suricata-ids:suricata:4.1.4:*:*:*:*:*:*:*

Information

Published : 2019-09-24 08:15

Updated : 2019-09-25 01:24


NVD link : CVE-2019-15699

Mitre link : CVE-2019-15699

Products Affected
CWE
CWE-125

Out-of-bounds Read