CVE-2024-55628

High CVSS: 7.5

Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to version 7.0.8, DNS resource name compression can lead to small DNS messages containing very large hostnames which can be costly to decode, and lead to very large DNS log records. While there are limits in place, they were too generous. The issue has been addressed in Suricata 7.0.8.

Vendor

Oisf

Product

Suricata

CWE

CWE-405

Yayın Tarihi

2025-01-06 18:15:22

Güncelleme

2025-03-31 13:02:25

Source Identifier

security-advisories@github.com

KEV Date Added

Kategoriler

CWE-405 Suricata HIGH Oisf 2025

Referanslar

https://github.com/OISF/suricata/commit/19cf0f81335d9f787d587450f7105ad95a648951 https://github.com/OISF/suricata/commit/37f4c52b22fcdde4adf9b479cb5700f89d00768d https://github.com/OISF/suricata/commit/3a5671739f5b25e5dd973a74ca5fd8ea40e1ae2d https://github.com/OISF/suricata/security/advisories/GHSA-96w4-jqwf-qx2j https://redmine.openinfosecfoundation.org/issues/7280

Benzer Kayıtlar

High

CVE-2026-31931

Suricata is a network IDS, IPS and NSM engine. From version 8.0.0 to before version 8.0.4, use of the "tls.alpn" rule ke…

High

CVE-2026-31932

Suricata is a network IDS, IPS and NSM engine. Prior to versions 7.0.15 and 8.0.4, inefficiency in KRB5 buffering can le…

High

CVE-2026-31933

Suricata is a network IDS, IPS and NSM engine. Prior to versions 7.0.15 and 8.0.4, specially crafted traffic can cause S…

Low

CVE-2026-22261

Suricata is a network IDS, IPS and NSM engine. Prior to versions 8.0.3 and 7.0.14, various inefficiencies in xff handlin…

Medium

CVE-2026-22262

Suricata is a network IDS, IPS and NSM engine. While saving a dataset a stack buffer is used to prepare the data. Prior…

Medium

CVE-2026-22263

Suricata is a network IDS, IPS and NSM engine. Starting in version 8.0.0 and prior to version 8.0.3, inefficiency in htt…