Suricata 安全漏洞

Suricata is a network IDS, IPS, and NSM engine developed by the Open Information Security Foundation. Vulnerabilities existed in versions prior to Suricata 7.0.15 and 8.0.4. These vulnerabilities were caused by specially crafted traffic, which could slow down Suricata’s operation in IDS mode,...

Suricata security vulnerabilities

Suricata is a network IDS, IPS, and NSM engine developed by the Open Information Security Foundation. Versions of Suricata prior to 8.0.3 and 7.0.14 contained security vulnerabilities. These vulnerabilities stemmed from the possibility of consuming excessive memory during the parsing of specially...

TencentOS Server 4: suricata (TSSA-2025:0025)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2025:0025 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

TencentOS Server 4: suricata (TSSA-2024:1082)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:1082 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

TencentOS Server 4: suricata (TSSA-2025:0285)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2025:0285 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

Fedora 41 : suricata (2025-5fa61dc843)

The remote Fedora 41 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-5fa61dc843 advisory. This is an extra release to address a critical issue in 7.0.9 affecting AFPACKET users: setting a BPF would cause Suricata to fail to start up. This...

suricata -- Multiple vulnerabilities

Suricate team reports: Multiple vulnerabilities CVE-2025-29915: Severity HIGH. The AFPACKET defrag option is enabled by default and allows AFPACKET to re-assemble fragmented packets before reaching Suricata. However the default packet size in Suricata is based on the network interface MTU which...

Advisory ROSA-SA-2025-2578

software: suricata 6.0.20 WASP: ROSA-CHROME packageevrstring: suricata-6.0.20-1 CVE-ID: CVE-2024-38535 BDU-ID: None CVE-Crit: HIGH CVE-DESC.: Vulnerability in Suricata parsing HTTP/2 traffic. CVE-STATUS: Vulnerability has been resolved. CVE-REV: To close the vulnerability, run the command: dnf...

Suricata < 7.0.7 Multiple Vulnerabilities

The version of OISF Suricata installed on the remote host is prior to 6.0.19 or 7.x prior to 7.0.5. It is, therefore, affected by multiple vulnerabilities: - Missing initialization of the random seed for thash leads to datasets having predictable hash table behavior. This can lead to dataset file...

Suricata < 7.0.8 Multiple Vulnerabilities

The version of OISF Suricata installed on the remote host is prior to 6.0.19 or 7.x prior to 7.0.5. It is, therefore, affected by multiple vulnerabilities: - A large input buffer to one of the following transforms can lead to a stack overflow causing Suricata to crash in the following transforms:...