3 matches found
SUSE CVE-2025-29916
Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Datasets declared in rules have an option to specify the hashsize to use. This size setting isn't properly limited, so the hash table allocation can be large. Untrusted rules can...
DEBIAN-CVE-2025-29918
Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. A PCRE rule can be written that leads to an infinite loop when negated PCRE is used. Packet processing thread becomes stuck in infinite loop limiting visibility and availability i...
CVE-2025-29916
CVE-2025-29916 affects Suricata. Datasets in rules can specify a hashsize that is not properly limited, leading to large hash-table allocations and potential DoS due to resource starvation. Root cause: unbounded hashsize setting in rule datasets. The vulnerability is fixed in Suricata 7.0.9. No e...