Ubuntu.comUB:CVE-2024-32867

HistoryMay 07, 2024 - 12:00 a.m.

CVE-2024-32867

2024-05-0700:00:00

ubuntu.com

suricata

network security

vulnerability

fragmentation anomalies

mis-detection

policy

unix

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

7.1 High

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

13.2%

JSON

Suricata is a network Intrusion Detection System, Intrusion Prevention
System and Network Security Monitoring engine. Prior to 7.0.5 and 6.0.19,
various problems in handling of fragmentation anomalies can lead to
mis-detection of rules and policy. This vulnerability is fixed in 7.0.5 or
6.0.19.

OSVersionArchitecturePackageVersionFilename
ubuntu18.04noarchsuricata< anyUNKNOWN
ubuntu22.04noarchsuricata< anyUNKNOWN
ubuntu23.10noarchsuricata< anyUNKNOWN
ubuntu24.04noarchsuricata< anyUNKNOWN
ubuntu16.04noarchsuricata< anyUNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	18.04	noarch	suricata	< any	UNKNOWN
ubuntu	22.04	noarch	suricata	< any	UNKNOWN
ubuntu	23.10	noarch	suricata	< any	UNKNOWN
ubuntu	24.04	noarch	suricata	< any	UNKNOWN
ubuntu	16.04	noarch	suricata	< any	UNKNOWN

References

github.com/OISF/suricata/commit/1e110d0a71db46571040b937e17a4bc9f91d6de9

github.com/OISF/suricata/commit/2f39ba75f153ba9bdf8eedc2a839cc973dbaea66

github.com/OISF/suricata/commit/414f97c6695c5a2e1d378a36a6f50d7288767634

github.com/OISF/suricata/commit/bf3d420fb709ebe074019a99e3bd3a2364524a4b

github.com/OISF/suricata/commit/d13bd2ae217a6d2ceb347f74d27cbfcd37b9bda9

github.com/OISF/suricata/commit/e6267758ed5da27f804f0c1c07f9423bdf4d72b8

github.com/OISF/suricata/security/advisories/GHSA-xvrx-88mv-xcq5

launchpad.net/bugs/cve/CVE-2024-32867

nvd.nist.gov/vuln/detail/CVE-2024-32867

redmine.openinfosecfoundation.org/issues/6672

redmine.openinfosecfoundation.org/issues/6673

redmine.openinfosecfoundation.org/issues/6677

security-tracker.debian.org/tracker/CVE-2024-32867

www.cve.org/CVERecord?id=CVE-2024-32867

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

7.1 High

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

13.2%

JSON

Related for UB:CVE-2024-32867