CVE-2024-55626 | THREATINT

Description

Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to 7.0.8, a large BPF filter file provided to Suricata at startup can lead to a buffer overflow at Suricata startup. The issue has been addressed in Suricata 7.0.8.

PUBLISHED Reserved 2024-12-09 | Published 2025-01-06 | Updated 2025-11-03 | Assigner GitHub_M

LOW: 3.3CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

Problem types

CWE-680: Integer Overflow to Buffer Overflow

Product status

< 7.0.8

affected

References

lists.debian.org/debian-lts-announce/2025/03/msg00029.html

github.com/...ricata/security/advisories/GHSA-wmg4-jqx5-4h9v

github.com/...ommit/dd71ef0af222a566e54dfc479dd1951dd17d7ceb

redmine.openinfosecfoundation.org/issues/7366

cve.org (CVE-2024-55626)

nvd.nist.gov (CVE-2024-55626)

Download JSON