Your submission was sent successfully! Close

Thank you for contacting us. A member of our team will be in touch shortly. Close

You have successfully unsubscribed! Close

Thank you for signing up for our newsletter!
In these regular emails you will find the latest updates about Ubuntu and upcoming events where you can meet our team.Close

Search CVE reports


Toggle filters

41 – 50 of 50 results


CVE-2018-14568

Medium priority
Needs evaluation

Suricata before 4.0.5 stops TCP stream inspection upon a TCP RST from a server. This allows detection bypass because Windows TCP clients proceed with normal processing of TCP data that arrives shortly after an RST (i.e., they act...

1 affected packages

suricata

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
suricata Not affected Not affected Not in release Needs evaluation Needs evaluation
Show less packages

CVE-2016-10728

Medium priority
Vulnerable

An issue was discovered in Suricata before 3.1.2. If an ICMPv4 error packet is received as the first packet on a flow in the to_client direction, it confuses the rule grouping lookup logic. The toclient inspection will...

1 affected packages

suricata

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
suricata Not affected Not affected Not in release Not affected Vulnerable
Show less packages

CVE-2018-6794

Medium priority
Vulnerable

Suricata before 4.0.4 is prone to an HTTP detection bypass vulnerability in detect.c and stream-tcp.c. If a malicious server breaks a normal TCP flow and sends data before the 3-way handshake is complete, then the data sent by the...

1 affected packages

suricata

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
suricata Not affected Not affected Not in release Vulnerable Vulnerable
Show less packages

CVE-2017-15377

Medium priority
Vulnerable

In Suricata before 4.x, it was possible to trigger lots of redundant checks on the content of crafted network traffic with a certain signature, because of DetectEngineContentInspection in detect-engine-content-inspection.c....

1 affected packages

suricata

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
suricata Not affected Not affected Not in release Vulnerable Vulnerable
Show less packages

CVE-2015-0928

Medium priority

Some fixes available 1 of 4

libhtp 0.5.15 allows remote attackers to cause a denial of service (NULL pointer dereference).

1 affected packages

suricata

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
suricata Not affected
Show less packages

CVE-2015-8954

Medium priority
Ignored

The MemcmpLowercase function in Suricata before 2.0.6 improperly excludes the first byte from comparisons, which might allow remote attackers to bypass intrusion-prevention functionality via a crafted HTTP request.

1 affected packages

suricata

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
suricata Not affected Not affected
Show less packages

CVE-2017-7177

Medium priority
Vulnerable

Suricata before 3.2.1 has an IPv4 defragmentation evasion issue caused by lack of a check for the IP protocol during fragment matching.

1 affected packages

suricata

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
suricata Not affected Not affected Not in release Vulnerable Vulnerable
Show less packages

CVE-2015-0971

Medium priority

Some fixes available 1 of 4

The DER parser in Suricata before 2.0.8 allows remote attackers to cause a denial of service (crash) via vectors related to SSL/TLS certificates.

1 affected packages

suricata

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
suricata Not affected
Show less packages

CVE-2014-6603

Medium priority
Not affected

The SSHParseBanner function in SSH parser (app-layer-ssh.c) in Suricata before 2.0.4 allows remote attackers to bypass SSH rules, cause a denial of service (crash), or possibly have unspecified other impact via a crafted banner,...

1 affected packages

suricata

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
suricata
Show less packages

CVE-2013-5919

Medium priority
Ignored

Suricata before 1.4.6 allows remote attackers to cause a denial of service (crash) via a malformed SSL record.

1 affected packages

suricata

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
suricata Not affected
Show less packages