5 matches found
Debian DLA-1603-1 : suricata security update
Several issues were found in suricata, an intrusion detection and prevention tool. CVE-2017-7177 Suricata has an IPv4 defragmentation evasion issue caused by lack of a check for the IP protocol during fragment matching. CVE-2017-15377 It was possible to trigger lots of redundant checks on the...
[SECURITY] [DLA 1603-1] suricata security update
Package : suricata Version : 2.0.7-2+deb8u3 CVE ID : CVE-2017-7177 CVE-2017-15377 CVE-2018-6794 Debian Bug : 856648 889842 856649 Several issues were found in suricata, an intrusion detection and prevention tool. CVE-2017-7177 Suricata has an IPv4 defragmentation evasion issue caused by lack of a...
Debian: Security Advisory (DLA-1603-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DLA 865-1] suricata security update
Package : suricata Version : 1.2.1-2+deb7u1 CVE ID : CVE-2017-7177 Debian Bug : 856649 It was discovered that there was a vulnerability in suricata, an intrusion detection tool; the IP protocol was not being used to match fragments with their packets allowing a carefully constructed packet with a...
CVE-2017-7177
Suricata (IDS/IPS) is affected by CVE-2017-7177 due to an IPv4 defragmentation evasion flaw: it does not check the IP protocol during fragment matching. This can enable an attacker to craft fragments that bypass reassembly/detection. Affected are Suricata releases prior to 3.2.1. Remediation: upg...