7 matches found
Debian DLA-1603-1 : suricata security update
Several issues were found in suricata, an intrusion detection and prevention tool. CVE-2017-7177 Suricata has an IPv4 defragmentation evasion issue caused by lack of a check for the IP protocol during fragment matching. CVE-2017-15377 It was possible to trigger lots of redundant checks on the...
[SECURITY] [DLA 1603-1] suricata security update
Package : suricata Version : 2.0.7-2+deb8u3 CVE ID : CVE-2017-7177 CVE-2017-15377 CVE-2018-6794 Debian Bug : 856648 889842 856649 Several issues were found in suricata, an intrusion detection and prevention tool. CVE-2017-7177 Suricata has an IPv4 defragmentation evasion issue caused by lack of a...
Debian: Security Advisory (DLA-1603-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Suricata 4.0.4 - IDS Detection Bypass
Suricata 4.0.4 - IDS Detection Bypass ----------------------------------------------------- Vulnerability Type: Detection Bypass Affected Product: Suricata Vulnerable version: SYN Seq=0 Ack= 0 - Evil Server Client ACK Seq=1 Ack= 84 - Evil Server Client - PSH, ACK Seq=1 Ack= 84 - Evil Server IDS...
Suricata < 4.0.4 - IDS Detection Bypass Vulnerability
Exploit for multiple platform in category dos / poc ----------------------------------------------------- Vulnerability Type: Detection Bypass Affected Product: Suricata Vulnerable version: SYN Seq=0 Ack= 0 - Evil Server Client ACK Seq=1 Ack= 84 - Evil Server Client - PSH, ACK Seq=1 Ack= 84 - Evi...
Fedora 27 : suricata (2018-ee417c4b28)
fixes bz1543250 and bz1543251 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 ...
CVE-2018-6794
Suricata before 4.0.4 is vulnerable to an HTTP detection bypass (CVE-2018-6794) in detect.c and stream-tcp.c. A server can inject data before the TCP 3‑way handshake completes; web clients may accept the data, but Suricata’s HTTP/tailored stream checks can skip it, primarily affecting HTTP signat...