Linux Distros Unpatched Vulnerability : CVE-2025-29915

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. The AFPACKET defrag option is enabled by...

CVE-2025-29915

CVE-2025-29915 affects Suricata, where the AF_PACKET defrag option being enabled by default allows AF_PACKET to re-assemble fragmented packets before they reach Suricata. The default packet size is tied to the interface MTU, causing Suricata to see truncated packets and potentially degrade visibi...

CVE-2025-29915 Suricata af-packet: defrag option can lead to truncated packets affecting visibility

Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. The AFPACKET defrag option is enabled by default and allows AFPACKET to re-assemble fragmented packets before reaching Suricata. However the default packet size in Suricata is bas...

CVE-2025-29915 Suricata af-packet: defrag option can lead to truncated packets affecting visibility

Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. The AFPACKET defrag option is enabled by default and allows AFPACKET to re-assemble fragmented packets before reaching Suricata. However the default packet size in Suricata is bas...

PT-2025-11966 · Suricata +1 · Suricata +1

Name of the Vulnerable Software and Affected Versions: Suricata versions affected versions not specified Description: The issue is related to the af-packet defrag option, which can lead to truncated packets. This affects Suricata in Debian Linux. No information is provided about the estimated...