Search CVE reports
1 – 10 of 45 results
CVE-2024-38536
Medium prioritySuricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. A memory allocation failure due to `http.memcap` being reached leads to a NULL-ptr reference leading to a crash....
1 affected packages
suricata
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
suricata | Needs evaluation | Needs evaluation | Not in release | Needs evaluation | Needs evaluation |
CVE-2024-38535
Medium prioritySuricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Suricata can run out of memory when parsing crafted HTTP/2 traffic. Upgrade to 6.0.20 or 7.0.6.
1 affected packages
suricata
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
suricata | Needs evaluation | Needs evaluation | Not in release | Needs evaluation | Needs evaluation |
CVE-2024-38534
Medium prioritySuricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Crafted modbus traffic can lead to unlimited resource accumulation within a flow. Upgrade to 7.0.6. Set a...
1 affected packages
suricata
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
suricata | Needs evaluation | Needs evaluation | Not in release | Needs evaluation | Needs evaluation |
CVE-2024-37151
Medium prioritySuricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Mishandling of multiple fragmented packets using the same IP ID value can lead to packet reassembly failure,...
1 affected packages
suricata
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
suricata | Needs evaluation | Needs evaluation | Not in release | Needs evaluation | Needs evaluation |
CVE-2024-32867
Medium prioritySuricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to 7.0.5 and 6.0.19, various problems in handling of fragmentation anomalies can lead to mis-detection of...
1 affected packages
suricata
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
suricata | Needs evaluation | Needs evaluation | Not in release | Needs evaluation | Needs evaluation |
CVE-2024-32664
Medium prioritySuricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to 7.0.5 and 6.0.19, specially crafted traffic or datasets can cause a limited buffer overflow. This...
1 affected packages
suricata
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
suricata | Needs evaluation | Needs evaluation | Not in release | Needs evaluation | Needs evaluation |
CVE-2024-32663
Medium prioritySuricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to 7.0.5 and 6.0.19, a small amount of HTTP/2 traffic can lead to Suricata using a large amount of memory....
1 affected packages
suricata
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
suricata | Needs evaluation | Needs evaluation | Not in release | Needs evaluation | Needs evaluation |
CVE-2024-28870
Medium prioritySuricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine developed by the OISF and the Suricata community. When parsing an overly long SSH banner, Suricata can use...
1 affected packages
suricata
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
suricata | Needs evaluation | Needs evaluation | Not in release | Needs evaluation | Needs evaluation |
CVE-2024-24568
Medium prioritySuricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to 7.0.3, the rules inspecting HTTP2 headers can get bypassed by crafted traffic. The vulnerability has...
1 affected packages
suricata
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
suricata | Needs evaluation | Needs evaluation | Not in release | Needs evaluation | Needs evaluation |
CVE-2024-23839
Medium prioritySuricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to 7.0.3, specially crafted traffic can cause a heap use after free if the ruleset uses...
1 affected packages
suricata
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
suricata | Needs evaluation | Needs evaluation | Not in release | Needs evaluation | Needs evaluation |