Lucene search

K

[email protected]NVD:CVE-2024-23835

HistoryFeb 26, 2024 - 4:27 p.m.

CVE-2024-23835

2024-02-2616:27:57

CWE-400

CWE-770

[email protected]

web.nvd.nist.gov

2

suricata

network intrusion detection system

intrusion prevention system

oom-related crashes

pgsql parser

patched

workaround

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0

Percentile

10.3%

Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to version 7.0.3, excessive memory use during pgsql parsing could lead to OOM-related crashes. This vulnerability is patched in 7.0.3. As workaround, users can disable the pgsql app layer parser.

References

github.com/OISF/suricata/commit/86de7cffa7e8f06fe9d600127e7dabe89c7e81dd

github.com/OISF/suricata/commit/f52c033e566beafb4480c139eb18662a2870464f

github.com/OISF/suricata/security/advisories/GHSA-8583-353f-mvwc

lists.fedoraproject.org/archives/list/[email protected]/message/GOCOBFUTIFHOP2PZOH4ENRFXRBHIRKK4/

lists.fedoraproject.org/archives/list/[email protected]/message/ZXJIT7R53ZXROO3I256RFUWTIW4ECK6P/

redmine.openinfosecfoundation.org/issues/6411

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0

Percentile

10.3%

Related for NVD:CVE-2024-23835

prion1 debiancve1 vulnrichment1 cve1 osv1 ubuntucve1 veracode1 cvelist1 openvas2 nessus3 fedora2 freebsd1