https://github.com/zeek/zeek/releases/tag/v5.0.2
Security fixes:
- Fix a possible overflow and crash in the ICMP analyzer when
receiving a specially crafted packet
- Fix a possible overflow and crash in the IRC analyzer when
receiving a specially crafted packet
- Fix a possible overflow and crash in the SMB analyzer when
receiving a specially crafted packet
- Fix two possible crashes when converting IP headers for output
via the raw_packet event
Other changes:
- Fix a bug that prevented Broker nodes to recover from OpenSSL errors.
- Fix handling of buffer sizes that caused Broker to stall despite
having sufficient capacity.
- Fix an issue with signal handling that could prevent Zeek from
exiting via ctrl-c when reading scripts from stdin.
Also fix new PR 266345 issue reported by @pkubaj ("fails to build
without SPICY enabled").
PR: 266345
Reported by: Tim Wojtulewicz, pkubaj
2f3600ba29