Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2024-55628

Опубликовано: 06 янв. 2025
Источник: debian
EPSS Низкий

Описание

Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to version 7.0.8, DNS resource name compression can lead to small DNS messages containing very large hostnames which can be costly to decode, and lead to very large DNS log records. While there are limits in place, they were too generous. The issue has been addressed in Suricata 7.0.8.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
suricatafixed1:7.0.8-1package
suricatano-dsabookwormpackage

Примечания

  • https://github.com/OISF/suricata/security/advisories/GHSA-96w4-jqwf-qx2j

  • Fixed by: https://github.com/OISF/suricata/commit/19cf0f81335d9f787d587450f7105ad95a648951 (master)

  • Fixed by: https://github.com/OISF/suricata/commit/37f4c52b22fcdde4adf9b479cb5700f89d00768d (master)

  • Fixed by: https://github.com/OISF/suricata/commit/3a5671739f5b25e5dd973a74ca5fd8ea40e1ae2d (master)

  • Fixed by: https://github.com/OISF/suricata/commit/58c41a7fa99f62d9a8688e970ab1a9b09c79723a (suricata-7.0.8)

  • Fixed by: https://github.com/OISF/suricata/commit/5edb84fe234f47a0fedfbf9b10b49699152fe8cb (suricata-7.0.8)

  • Fixed by: https://github.com/OISF/suricata/commit/71212b78bd1b7b841c9d9a907d0b3eea71a54060 (suricata-7.0.8)

EPSS

Процентиль: 61%
0.00409
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2024-55628

CVSS3: 7.5
ubuntu
около 1 года назад

Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to version 7.0.8, DNS resource name compression can lead to small DNS messages containing very large hostnames which can be costly to decode, and lead to very large DNS log records. While there are limits in place, they were too generous. The issue has been addressed in Suricata 7.0.8.

nvd логотип

CVE-2024-55628

CVSS3: 7.5
nvd
около 1 года назад

Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to version 7.0.8, DNS resource name compression can lead to small DNS messages containing very large hostnames which can be costly to decode, and lead to very large DNS log records. While there are limits in place, they were too generous. The issue has been addressed in Suricata 7.0.8.

fstec логотип

BDU:2025-00136

CVSS3: 7.5
fstec
около 1 года назад

Уязвимость системы обнаружения и предотвращения вторжений Suricata, связанная с асимметричным потреблением ресурсов, позволяющая нарушителю вызвать отказ в обслуживании

EPSS

Процентиль: 61%
0.00409
Низкий