Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2023-35853HistoryJun 19, 2023 - 4:15 a.m.
CVE-2023-35853
2023-06-1904:15:11
Debian Security Bug Tracker
security-tracker.debian.org
10
suricata
lua
code execution
fix
security configuration
unix
0.001 Low
EPSS
Percentile
40.0%
In Suricata before 6.0.13, an adversary who controls an external source of Lua rules may be able to execute Lua code. This is addressed in 6.0.13 by disabling Lua unless allow-rules is true in the security lua configuration section.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | suricata | <= 1:6.0.10-1 | suricata_1:6.0.10-1_all.deb |
| Debian | 11 | all | suricata | <= 1:6.0.1-3 | suricata_1:6.0.1-3_all.deb |
| Debian | 10 | all | suricata | <= 1:4.1.2-2+deb10u1 | suricata_1:4.1.2-2+deb10u1_all.deb |
| Debian | 999 | all | suricata | < 1:6.0.13-1 | suricata_1:6.0.13-1_all.deb |
| Debian | 13 | all | suricata | < 1:6.0.13-1 | suricata_1:6.0.13-1_all.deb |
Related
alpinelinux
alpinelinux
CVE-2023-35853
2023-06-19 04:15:11
prion
prion
Design/Logic Flaw
2023-06-19 04:15:00
ubuntucve
ubuntucve
CVE-2023-35853
2023-06-19 00:00:00
veracode
veracode
Remote Code Execution (RCE)
2023-07-22 17:28:35
cvelist
cvelist
CVE-2023-35853
2023-06-19 00:00:00
cve
cve
CVE-2023-35853
2023-06-19 04:15:11
osv
osv
CVE-2023-35853
2023-06-19 04:15:11
rosalinux
rosalinux
Advisory ROSA-SA-2024-2360
2024-02-27 09:06:58
Advisory ROSA-SA-2023-2305
2023-12-12 12:21:49
photon
photon
Critical Photon OS Security Update - PHSA-2023-4.0-0468
2023-09-09 00:00:00
Critical Photon OS Security Update - PHSA-2023-5.0-0091
2023-09-09 00:00:00