Описание
Suricata is a network IDS, IPS and NSM engine. Starting in version 8.0.0 and prior to version 8.0.3, inefficiency in http1 headers parsing can lead to slowdown over multiple packets. Version 8.0.3 patches the issue. No known workarounds are available.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| suricata | fixed | 1:8.0.3-1 | package | |
| suricata | not-affected | trixie | package | |
| suricata | not-affected | bookworm | package | |
| suricata | not-affected | bullseye | package |
Примечания
https://github.com/OISF/suricata/security/advisories/GHSA-rwc5-hxj6-hwx7
https://github.com/OISF/suricata/commit/018a377f74e3eb2b042c6f783ad9043060923428 (suricata-8.0.3)
EPSS
Связанные уязвимости
Suricata is a network IDS, IPS and NSM engine. Starting in version 8.0.0 and prior to version 8.0.3, inefficiency in http1 headers parsing can lead to slowdown over multiple packets. Version 8.0.3 patches the issue. No known workarounds are available.
Suricata is a network IDS, IPS and NSM engine. Starting in version 8.0.0 and prior to version 8.0.3, inefficiency in http1 headers parsing can lead to slowdown over multiple packets. Version 8.0.3 patches the issue. No known workarounds are available.
Уязвимость системы обнаружения и предотвращения вторжений Suricata, связанная с чрезмерной загрузкой центрально процессора, позволяющая нарушителю вызвать отказ в обслуживании
EPSS