v3.2.4
This release fixes the following security issues:
-
Fix ASCII Input reader's treatment of input files containing null-bytes
#1398
a636f8eThis is mostly only significant for deployments that utilize input data feeds
whose content is controlled by external sources: an input file containing
null-bytes could lead to a buffer-over-read, crash Zeek, and be exploited
to cause Denial of Service.
This release fixes the following bugs:
-
MIME sub-entities overwrote top-level header values cause misleading SMTP log
#1352
#1365 -
Fix incorrect
major_subsys_version
field inpe_optional_header
event
#1401
Reminder: Zeek 3.0.x is the Long-Term Support (LTS) release, receiving bug fixes until at least May 2021 (estimate of 2 months after 4.0.0 release) while Zeek 3.2.x is the current feature release, receiving bug fixes until approximately March 2021 when the next 4.0.x LTS release series is expected to begin.