EPSS
Percentile
54.7%
Suricata is vulnerable to IPv4 defragmentation evasion. A lack of validation in the IP protocol during fragment matching results in IPv4 defragmentation evasion and could potentially allow an attacker to bypass access controls.
www.securityfocus.com/bid/97047
github.com/inliniac/suricata/commit/4a04f814b15762eb446a5ead4d69d021512df6f8
lists.debian.org/debian-lts-announce/2018/12/msg00000.html
redmine.openinfosecfoundation.org/issues/2019
security-tracker.debian.org/tracker/CVE-2017-7177