3 matches found
CVE-2019-10056
An issue was discovered in Suricata 4.1.3. The code mishandles the case of sending a network packet with the right type, such that the function DecodeEthernet in decode-ethernet.c is executed a second time. At this point, the algorithm cuts the first part of the packet and doesn't determine the...
CVE-2019-10056
An issue was discovered in Suricata 4.1.3. The code mishandles the case of sending a network packet with the right type, such that the function DecodeEthernet in decode-ethernet.c is executed a second time. At this point, the algorithm cuts the first part of the packet and doesn't determine the...
CVE-2019-10056
Affected software: Suricata 4.1.3. Root cause: DecodeEthernet mishandles a crafted packet, causing the function to be executed a second time; it truncates the first part of the packet, mismanages the length, and ends up casting a packet with no type, crashing the process (denial of service). The ...