Lucene search
K

7 matches found

Tenable Nessus
Tenable Nessus
added 2018/12/06 12:0 a.m.33 views

Debian DLA-1603-1 : suricata security update

Several issues were found in suricata, an intrusion detection and prevention tool. CVE-2017-7177 Suricata has an IPv4 defragmentation evasion issue caused by lack of a check for the IP protocol during fragment matching. CVE-2017-15377 It was possible to trigger lots of redundant checks on the...

7.5CVSS6.5AI score0.24712EPSS
Exploits4References5
Debian
Debian
added 2018/12/04 7:43 p.m.108 views

[SECURITY] [DLA 1603-1] suricata security update

Package : suricata Version : 2.0.7-2+deb8u3 CVE ID : CVE-2017-7177 CVE-2017-15377 CVE-2018-6794 Debian Bug : 856648 889842 856649 Several issues were found in suricata, an intrusion detection and prevention tool. CVE-2017-7177 Suricata has an IPv4 defragmentation evasion issue caused by lack of a...

7.5CVSS6.9AI score0.24712EPSS
Exploits4
OpenVAS
OpenVAS
added 2018/12/04 12:0 a.m.46 views

Debian: Security Advisory (DLA-1603-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.3AI score0.24712EPSS
Exploits4References3
UbuntuCve
UbuntuCve
added 2017/10/23 8:29 a.m.21 views

CVE-2017-15377

In Suricata before 4.x, it was possible to trigger lots of redundant checks on the content of crafted network traffic with a certain signature, because of DetectEngineContentInspection in detect-engine-content-inspection.c. The search engine doesn't stop when it should after no match is found;...

7.5CVSS7.1AI score0.01981EPSS
Exploits0References2
OSV
OSV
added 2017/10/23 8:29 a.m.16 views

CVE-2017-15377

In Suricata before 4.x, it was possible to trigger lots of redundant checks on the content of crafted network traffic with a certain signature, because of DetectEngineContentInspection in detect-engine-content-inspection.c. The search engine doesn't stop when it should after no match is found;...

7.5CVSS7AI score
Exploits0References3
CVE
CVE
added 2017/10/23 8:0 a.m.65 views

CVE-2017-15377

CVE-2017-15377 affects Suricata before version 4.x. The vulnerability is caused by DetectEngineContentInspection in detect-engine-content-inspection.c, where the search engine does not stop after no match and can recurse up to the 3000 default limit, enabling excessive processing of crafted netwo...

7.5CVSS7.3AI score0.01981EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVE
added 2017/10/23 8:0 a.m.20 views

CVE-2017-15377

In Suricata before 4.x, it was possible to trigger lots of redundant checks on the content of crafted network traffic with a certain signature, because of DetectEngineContentInspection in detect-engine-content-inspection.c. The search engine doesn't stop when it should after no match is found;...

7.5CVSS7.3AI score0.01981EPSS
Exploits0
Rows per page
Query Builder