logo
DATABASE RESOURCES PRICING ABOUT US

CVE-2018-10242

Description

Suricata version 4.0.4 incorrectly handles the parsing of the SSH banner. A malformed SSH banner can cause the parsing code to read beyond the allocated data because SSHParseBanner in app-layer-ssh.c lacks a length check.


Affected Package


OS OS Version Package Name Package Version
Debian 12 suricata 1:6.0.9-1
Debian 11 suricata 1:6.0.1-3
Debian 10 suricata 1:4.1.2-2+deb10u1
Debian 999 suricata 1:6.0.9-1

Related