121 matches found
CVE-2025-53537 LibHTP's memory leak with lzma can lead to resource starvation
LibHTP is a security-aware parser for the HTTP protocol and its related bits and pieces. In versions 0.5.50 and below, there is a traffic-induced memory leak that can starve the process of memory, leading to loss of visibility. To workaround this issue, set suricata.yaml...
CVE-2025-53537 LibHTP's memory leak with lzma can lead to resource starvation
LibHTP is a security-aware parser for the HTTP protocol and its related bits and pieces. In versions 0.5.50 and below, there is a traffic-induced memory leak that can starve the process of memory, leading to loss of visibility. To workaround this issue, set suricata.yaml...
CVE-2025-53537 LibHTP's memory leak with lzma can lead to resource starvation
LibHTP is a security-aware parser for the HTTP protocol and its related bits and pieces. In versions 0.5.50 and below, there is a traffic-induced memory leak that can starve the process of memory, leading to loss of visibility. To workaround this issue, set suricata.yaml...
CVE-2025-53537
CVE-2025-53537 affects LibHTP
CVE-2025-53537
LibHTP is a security-aware parser for the HTTP protocol and its related bits and pieces. In versions 0.5.50 and below, there is a traffic-induced memory leak that can starve the process of memory, leading to loss of visibility. To workaround this issue, set suricata.yaml...
CVE-2025-53537
LibHTP is a security-aware parser for the HTTP protocol and its related bits and pieces. In versions 0.5.50 and below, there is a traffic-induced memory leak that can starve the process of memory, leading to loss of visibility. To workaround this issue, set suricata.yaml...
LibHTP 安全漏洞
LibHTP is a security-aware parser from the Open Information Security Foundation. The product is primarily used for the HTTP protocol, among other things. A security vulnerability exists in LibHTP 0.5.50 and earlier versions, which stems from a memory leak issue that could cause a process to run o...
PT-2025-29085
Name of the Vulnerable Software and Affected Versions: LibHTP versions 0.5.50 and below Description: LibHTP is a security-aware parser for the HTTP protocol. Versions 0.5.50 and below contain a traffic-induced memory leak that can lead to process memory starvation and loss of visibility...
Fedora: Security Advisory (FEDORA-2025-a9e7d63dc7)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2019-17420
In OISF LibHTP before 0.5.31, as used in Suricata 4.1.4 and other products, an HTTP protocol parsing error causes the httpheader signature to not alert on a response with a single \r\n ending...
Fedora 40 : suricata (2025-2a295896e6)
The remote Fedora 40 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-2a295896e6 advisory. This is an extra release to address a critical issue in 7.0.9 affecting AFPACKET users: setting a BPF would cause Suricata to fail to start up. This...
Fedora 41 : suricata (2025-5fa61dc843)
The remote Fedora 41 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-5fa61dc843 advisory. This is an extra release to address a critical issue in 7.0.9 affecting AFPACKET users: setting a BPF would cause Suricata to fail to start up. This...
Linux Distros Unpatched Vulnerability : CVE-2024-23837
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - LibHTP is a security-aware parser for the HTTP protocol. Crafted traffic can cause excessive processing time of HTTP headers, leading to denial of service. This...
Linux Distros Unpatched Vulnerability : CVE-2024-45797
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - LibHTP is a security-aware parser for the HTTP protocol and the related bits and pieces. Prior to version 0.5.49, unbounded processing of HTTP request and...
openSUSE Security Advisory (openSUSE-SU-2024:0150-2)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2024-23837
LibHTP is a security-aware parser for the HTTP protocol. Crafted traffic can cause excessive processing time of HTTP headers, leading to denial of service. This issue is addressed in 0.5.46...
CVE-2024-45797
LibHTP is a security-aware parser for the HTTP protocol and the related bits and pieces. Prior to version 0.5.49, unbounded processing of HTTP request and response headers can lead to excessive CPU time and memory utilization, possibly leading to extreme slowdowns. This issue is addressed in 0.5....
CVE-2024-28871
LibHTP is a security-aware parser for the HTTP protocol and the related bits and pieces. Version 0.5.46 may parse malformed request traffic, leading to excessive CPU usage. Version 0.5.47 contains a patch for the issue. No known workarounds are available...
Fedora 37 : suricata (2022-51316e38ce)
The remote Fedora 37 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2022-51316e38ce advisory. LibHTP has been updated to 0.5.42 and is bundled with the release. Various security, performance, accuracy and stability issues have been fixed. Tenable has...
SUSE CVE-2024-45797
LibHTP is a security-aware parser for the HTTP protocol and the related bits and pieces. Prior to version 0.5.49, unbounded processing of HTTP request and response headers can lead to excessive CPU time and memory utilization, possibly leading to extreme slowdowns. This issue is addressed in 0.5....