CVE-2025-64334 | THREATINT

Description

Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. In versions from 8.0.0 to before 8.0.2, compressed HTTP data can lead to unbounded memory growth during decompression. This issue has been patched in version 8.0.2. A workaround involves disabling LZMA decompression or limiting response-body-limit size.

PUBLISHED Reserved 2025-10-30 | Published 2025-11-26 | Updated 2025-11-28 | Assigner GitHub_M

HIGH: 7.5CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Problem types

CWE-770: Allocation of Resources Without Limits or Throttling

Product status

>= 8.0.0, < 8.0.2

affected

References

github.com/...ricata/security/advisories/GHSA-r5jf-v2gx-gx8w

github.com/...ommit/00f04daa3a44928dfdd0003cb9735469272c94a1

cve.org (CVE-2025-64334)

nvd.nist.gov (CVE-2025-64334)

Download JSON