2.4.2 Release

nnovzver · Oct 16, 2017 · c921b3f · c921b3f
1 parent 09a6e54
commit c921b3f
Show file tree

Hide file tree

Showing 3 changed files with 20 additions and 1 deletion.
diff --git a/CHANGES b/CHANGES
@@ -1,4 +1,14 @@
 
+2.4.2 | 2017-10-16 13:42:29 -0700
+
+  * Release 2.4.2
+
+  * Patch OOB write in content-line analyzer.
+
+    A combination of packets can trigger an out of bound write of '0' byte
+    in the content-line analyzer. Addresses BIT-1856.
+    (Frank Meier/Johanna Amann)
+
 2.4.1 | 2015-09-06 09:54:17 -0700
 
   * Make dns_max_queries redef-able (Vlad Grigorescu)

diff --git a/NEWS b/NEWS
@@ -4,6 +4,15 @@ release. For an exhaustive list of changes, see the ``CHANGES`` file
 (note that submodules, such as BroControl and Broccoli, come with
 their own ``CHANGES``.)
 
+Bro 2.4.2
+=========
+
+Bro 2.4.2 fixes a security issue in the ContentLine analyzer. In rare cases
+a bug in the ContentLine analyzer can lead to an out of bound write of a single
+byte. This allows a remote attacker to crash Bro; there also is a possibility
+this can be exploited in other ways.
+
+
 Bro 2.4
 =======
 

diff --git a/VERSION b/VERSION
@@ -1 +1 @@
-2.4.1
+2.4.2