Описание
Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. A memory allocation failure due to `http.memcap` being reached leads to a NULL-ptr reference leading to a crash. Upgrade to 7.0.6.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| suricata | fixed | 1:7.0.6-1 | package | |
| suricata | no-dsa | bookworm | package | |
| suricata | no-dsa | bullseye | package |
Примечания
https://github.com/OISF/suricata/security/advisories/GHSA-j32j-4w6g-94hh
https://redmine.openinfosecfoundation.org/issues/7029
https://redmine.openinfosecfoundation.org/issues/7033
EPSS
Связанные уязвимости
Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. A memory allocation failure due to `http.memcap` being reached leads to a NULL-ptr reference leading to a crash. Upgrade to 7.0.6.
Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. A memory allocation failure due to `http.memcap` being reached leads to a NULL-ptr reference leading to a crash. Upgrade to 7.0.6.
Уязвимость средства обнаружения и предотвращения вторжений Suricata, позволяющая нарушителю вызвать отказ в обслуживании
EPSS