CVE-2018-17019

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2018-17019
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2018-17019.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2018-17019
Downstream
Published
2018-09-13T19:29:00.557Z
Modified
2025-11-14T08:01:57.969531Z
Severity
  • 7.5 (High) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
[none]
Details

In Bro through 2.5.5, there is a DoS in IRC protocol names command parsing in analyzer/protocol/irc/IRC.cc.

References

Affected packages

Git / github.com/bro/bro

Affected ranges

Type
GIT
Repo
https://github.com/bro/bro
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
c2b18849f8bb833253538f5dfedb4ed1dc176a30

Affected versions

beta-2.*

beta-2.0-docs

v1.*

v1.1
v1.6-dev

v2.*

v2.0
v2.0-beta
v2.0-beta-pre
v2.1
v2.1-beta
v2.2
v2.2-beta
v2.3
v2.3-beta
v2.4
v2.4-beta
v2.5
v2.5-beta
v2.5-beta2

Database specific

vanir_signatures

[
    {
        "signature_version": "v1",
        "deprecated": false,
        "target": {
            "file": "src/analyzer/protocol/irc/IRC.cc"
        },
        "digest": {
            "line_hashes": [
                "77868270333029608526007377023723104342",
                "197616294696713652245393448113651582737",
                "269458979685331922072839064529115824301",
                "215176171713393582881742058038719741646",
                "315085053996922377014046409675575957011",
                "262883685267438665287262714275062867303",
                "156884935239857457729986971900351574092",
                "262207262755734626492622585168230902345",
                "110923245719106072015242546838362036685"
            ],
            "threshold": 0.9
        },
        "signature_type": "Line",
        "source": "https://github.com/bro/bro/commit/c2b18849f8bb833253538f5dfedb4ed1dc176a30",
        "id": "CVE-2018-17019-6fd2cebe"
    },
    {
        "signature_version": "v1",
        "deprecated": false,
        "target": {
            "function": "IRC_Analyzer::DeliverStream",
            "file": "src/analyzer/protocol/irc/IRC.cc"
        },
        "digest": {
            "function_hash": "129660041364571452923689316779621065090",
            "length": 24683.0
        },
        "signature_type": "Function",
        "source": "https://github.com/bro/bro/commit/c2b18849f8bb833253538f5dfedb4ed1dc176a30",
        "id": "CVE-2018-17019-71a0b4e7"
    }
]

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2018-17019.json"