CVE |
Vendors |
Products |
Updated |
CVSS |
CVE-2019-17420 |
2 Oisf, Suricata-ids |
2 Libhtp, Suricata |
2019-10-16 |
5.0 |
In OISF LibHTP before 0.5.31, as used in Suricata 4.1.4 and other products, an HTTP protocol parsing error causes the http_header signature to not alert on a response with a single \r\n ending. |
CVE-2018-14568 |
1 Suricata-ids |
1 Suricata |
2019-10-03 |
5.0 |
Suricata before 4.0.5 stops TCP stream inspection upon a TCP RST from a server. This allows detection bypass because Windows TCP clients proceed with normal processing of TCP data that arrives shortly after an RST (i.e., they act as if the RST... |
CVE-2019-16411 |
1 Suricata-ids |
1 Suricata |
2019-10-02 |
7.5 |
An issue was discovered in Suricata 4.1.4. By sending multiple IPv4 packets that have invalid IPv4Options, the function IPV4OptValidateTimestamp in decode-ipv4.c tries to access a memory region that is not allocated. There is a check for o->len <... |
CVE-2019-15699 |
1 Suricata-ids |
1 Suricata |
2019-09-25 |
6.4 |
An issue was discovered in app-layer-ssl.c in Suricata 4.1.4. Upon receiving a corrupted SSLv3 (TLS 1.2) packet, the parser function TLSDecodeHSHelloExtensions tries to access a memory region that is not allocated, because the expected length of... |
CVE-2019-16410 |
1 Suricata-ids |
1 Suricata |
2019-09-25 |
6.4 |
An issue was discovered in Suricata 4.1.4. By sending multiple fragmented IPv4 packets, the function Defrag4Reassemble in defrag.c tries to access a memory region that is not allocated, because of a lack of header_len checking. |
CVE-2019-10056 |
1 Suricata-ids |
1 Suricata |
2019-09-05 |
5.0 |
An issue was discovered in Suricata 4.1.3. The code mishandles the case of sending a network packet with the right type, such that the function DecodeEthernet in decode-ethernet.c is executed a second time. At this point, the algorithm cuts the... |
CVE-2019-10051 |
1 Suricata-ids |
1 Suricata |
2019-09-05 |
5.0 |
An issue was discovered in Suricata 4.1.3. If the function filetracker_newchunk encounters an unsafe "Some(sfcm) => { ft.new_chunk }" item, then the program enters an smb/files.rs error condition and crashes. |
CVE-2019-10055 |
1 Suricata-ids |
1 Suricata |
2019-09-05 |
7.8 |
An issue was discovered in Suricata 4.1.3. The function ftp_pasv_response lacks a check for the length of part1 and part2, leading to a crash within the ftp/mod.rs file. |
CVE-2019-10052 |
1 Suricata-ids |
1 Suricata |
2019-09-04 |
5.0 |
An issue was discovered in Suricata 4.1.3. If the network packet does not have the right length, the parser tries to access a part of a DHCP packet. At this point, the Rust environment runs into a panic in parse_clientid_option in the dhcp/parser.rs file. |
CVE-2019-10054 |
1 Suricata-ids |
1 Suricata |
2019-09-04 |
5.0 |
An issue was discovered in Suricata 4.1.3. The function process_reply_record_v3 lacks a check for the length of reply.data. It causes an invalid memory access and the program crashes within the nfs/nfs3.rs file. |
CVE-2019-10053 |
1 Suricata-ids |
1 Suricata |
2019-05-14 |
7.5 |
An issue was discovered in Suricata 4.1.x before 4.1.4. If the input of the function SSHParseBanner is composed only of a \n character, then the program runs into a heap-based buffer over-read. This occurs because the erroneous search for \r... |
CVE-2019-10050 |
1 Suricata-ids |
1 Suricata |
2019-05-14 |
5.0 |
A buffer over-read issue was discovered in Suricata 4.1.x before 4.1.4. If the input of the decode-mpls.c function DecodeMPLS is composed only of a packet of source address and destination address plus the correct type field and the right number... |
CVE-2018-10242 |
2 Suricata-ids, Debian |
2 Suricata, Debian Linux |
2019-05-06 |
5.0 |
Suricata version 4.0.4 incorrectly handles the parsing of the SSH banner. A malformed SSH banner can cause the parsing code to read beyond the allocated data because SSHParseBanner in app-layer-ssh.c lacks a length check. |
CVE-2018-6794 |
2 Suricata-ids, Debian |
2 Suricata, Debian Linux |
2019-03-01 |
5.0 |
Suricata before 4.0.4 is prone to an HTTP detection bypass vulnerability in detect.c and stream-tcp.c. If a malicious server breaks a normal TCP flow and sends data before the 3-way handshake is complete, then the data sent by the malicious... |
CVE-2018-18956 |
1 Suricata-ids |
1 Suricata |
2019-01-30 |
5.0 |
The ProcessMimeEntity function in util-decode-mime.c in Suricata 4.x before 4.0.6 allows remote attackers to cause a denial of service (segfault and daemon crash) via crafted input to the SMTP parser, as exploited in the wild in November 2018. |
CVE-2013-5919 |
2 Openinfosecfoundation, Suricata-ids |
2 Suricata, Suricata |
2018-10-30 |
5.0 |
Suricata before 1.4.6 allows remote attackers to cause a denial of service (crash) via a malformed SSL record. |
CVE-2016-10728 |
1 Suricata-ids |
1 Suricata |
2018-09-20 |
5.0 |
An issue was discovered in Suricata before 3.1.2. If an ICMPv4 error packet is received as the first packet on a flow in the to_client direction, it confuses the rule grouping lookup logic. The toclient inspection will then continue with the... |