Lucene search
K

121 matches found

Vulnrichment
Vulnrichment
added 2025/07/23 8:35 p.m.4 views

CVE-2025-53537 LibHTP's memory leak with lzma can lead to resource starvation

LibHTP is a security-aware parser for the HTTP protocol and its related bits and pieces. In versions 0.5.50 and below, there is a traffic-induced memory leak that can starve the process of memory, leading to loss of visibility. To workaround this issue, set suricata.yaml...

7.5CVSS6.2AI score0.0042EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/07/23 8:35 p.m.8 views

CVE-2025-53537 LibHTP's memory leak with lzma can lead to resource starvation

LibHTP is a security-aware parser for the HTTP protocol and its related bits and pieces. In versions 0.5.50 and below, there is a traffic-induced memory leak that can starve the process of memory, leading to loss of visibility. To workaround this issue, set suricata.yaml...

7.5CVSS0.0042EPSS
Exploits0References2
OSV
OSV
added 2025/07/23 8:35 p.m.6 views

CVE-2025-53537 LibHTP's memory leak with lzma can lead to resource starvation

LibHTP is a security-aware parser for the HTTP protocol and its related bits and pieces. In versions 0.5.50 and below, there is a traffic-induced memory leak that can starve the process of memory, leading to loss of visibility. To workaround this issue, set suricata.yaml...

7.5CVSS6.4AI score0.0042EPSS
Exploits0References4
CVE
CVE
added 2025/07/23 8:35 p.m.49 views

CVE-2025-53537

CVE-2025-53537 affects LibHTP

7.5CVSS6.2AI score0.0042EPSS
Exploits0References2Affected Software1
AlpineLinux
AlpineLinux
added 2025/07/23 8:35 p.m.4 views

CVE-2025-53537

LibHTP is a security-aware parser for the HTTP protocol and its related bits and pieces. In versions 0.5.50 and below, there is a traffic-induced memory leak that can starve the process of memory, leading to loss of visibility. To workaround this issue, set suricata.yaml...

7.5CVSS7AI score0.0042EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2025/07/23 8:35 p.m.7 views

CVE-2025-53537

LibHTP is a security-aware parser for the HTTP protocol and its related bits and pieces. In versions 0.5.50 and below, there is a traffic-induced memory leak that can starve the process of memory, leading to loss of visibility. To workaround this issue, set suricata.yaml...

7.5CVSS5.3AI score0.0042EPSS
Exploits0
CNNVD
CNNVD
added 2025/07/23 12:0 a.m.5 views

LibHTP 安全漏洞

LibHTP is a security-aware parser from the Open Information Security Foundation. The product is primarily used for the HTTP protocol, among other things. A security vulnerability exists in LibHTP 0.5.50 and earlier versions, which stems from a memory leak issue that could cause a process to run o...

7.5CVSS6.3AI score0.0042EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/07/10 12:0 a.m.2 views

PT-2025-29085

Name of the Vulnerable Software and Affected Versions: LibHTP versions 0.5.50 and below Description: LibHTP is a security-aware parser for the HTTP protocol. Versions 0.5.50 and below contain a traffic-induced memory leak that can lead to process memory starvation and loss of visibility...

7.5CVSS6.4AI score0.0042EPSS
Exploits0References18
OpenVAS
OpenVAS
added 2025/05/26 12:0 a.m.6 views

Fedora: Security Advisory (FEDORA-2025-a9e7d63dc7)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.2AI score0.00241EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 8:38 a.m.7 views

CVE-2019-17420

In OISF LibHTP before 0.5.31, as used in Suricata 4.1.4 and other products, an HTTP protocol parsing error causes the httpheader signature to not alert on a response with a single \r\n ending...

5.3CVSS6.8AI score0.01355EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/04/03 12:0 a.m.11 views

Fedora 40 : suricata (2025-2a295896e6)

The remote Fedora 40 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-2a295896e6 advisory. This is an extra release to address a critical issue in 7.0.9 affecting AFPACKET users: setting a BPF would cause Suricata to fail to start up. This...

7.5CVSS6.8AI score0.00241EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/04/03 12:0 a.m.14 views

Fedora 41 : suricata (2025-5fa61dc843)

The remote Fedora 41 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-5fa61dc843 advisory. This is an extra release to address a critical issue in 7.0.9 affecting AFPACKET users: setting a BPF would cause Suricata to fail to start up. This...

7.5CVSS6.8AI score0.00241EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2024-23837

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - LibHTP is a security-aware parser for the HTTP protocol. Crafted traffic can cause excessive processing time of HTTP headers, leading to denial of service. This...

7.5CVSS7.3AI score0.01193EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.12 views

Linux Distros Unpatched Vulnerability : CVE-2024-45797

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - LibHTP is a security-aware parser for the HTTP protocol and the related bits and pieces. Prior to version 0.5.49, unbounded processing of HTTP request and...

7.5CVSS6.3AI score0.00705EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2025/02/25 12:0 a.m.3 views

openSUSE Security Advisory (openSUSE-SU-2024:0150-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.7AI score0.01193EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2025/02/05 7:39 a.m.13 views

CVE-2024-23837

LibHTP is a security-aware parser for the HTTP protocol. Crafted traffic can cause excessive processing time of HTTP headers, leading to denial of service. This issue is addressed in 0.5.46...

7.5CVSS6.5AI score0.01193EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/02/05 3:28 a.m.8 views

CVE-2024-45797

LibHTP is a security-aware parser for the HTTP protocol and the related bits and pieces. Prior to version 0.5.49, unbounded processing of HTTP request and response headers can lead to excessive CPU time and memory utilization, possibly leading to extreme slowdowns. This issue is addressed in 0.5....

7.5CVSS6.7AI score0.00705EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/02/05 12:59 a.m.9 views

CVE-2024-28871

LibHTP is a security-aware parser for the HTTP protocol and the related bits and pieces. Version 0.5.46 may parse malformed request traffic, leading to excessive CPU usage. Version 0.5.47 contains a patch for the issue. No known workarounds are available...

7.5CVSS6.8AI score0.00841EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/11/14 12:0 a.m.3 views

Fedora 37 : suricata (2022-51316e38ce)

The remote Fedora 37 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2022-51316e38ce advisory. LibHTP has been updated to 0.5.42 and is bundled with the release. Various security, performance, accuracy and stability issues have been fixed. Tenable has...

5.6AI score
Exploits0References1
SUSE CVE
SUSE CVE
added 2024/10/18 2:52 a.m.4 views

SUSE CVE-2024-45797

LibHTP is a security-aware parser for the HTTP protocol and the related bits and pieces. Prior to version 0.5.49, unbounded processing of HTTP request and response headers can lead to excessive CPU time and memory utilization, possibly leading to extreme slowdowns. This issue is addressed in 0.5....

7.5CVSS7AI score0.00705EPSS
Exploits1References3
Rows per page
Query Builder