Skip to content

v3.2.4
Compare
Choose a tag to compare
@jsiwek jsiwek released this 22 Feb 19:50
· 5801 commits to master since this release
v3.2.4
66d54d9

This release fixes the following security issues:

  • Fix ASCII Input reader's treatment of input files containing null-bytes
    #1398
    a636f8e

    This is mostly only significant for deployments that utilize input data feeds
    whose content is controlled by external sources: an input file containing
    null-bytes could lead to a buffer-over-read, crash Zeek, and be exploited
    to cause Denial of Service.

This release fixes the following bugs:

  • MIME sub-entities overwrote top-level header values cause misleading SMTP log
    #1352
    #1365

  • Fix incorrect major_subsys_version field in pe_optional_header event
    #1401

Reminder: Zeek 3.0.x is the Long-Term Support (LTS) release, receiving bug fixes until at least May 2021 (estimate of 2 months after 4.0.0 release) while Zeek 3.2.x is the current feature release, receiving bug fixes until approximately March 2021 when the next 4.0.x LTS release series is expected to begin.

Assets 4