CNNVD-202510-014 Information
CNNVD ID
CNNVD-202510-014
Related CVE
- CNNVD Published: 2025-10-01
Description (Chinese)
Suricata是Open Information Security基金会的一个网络IDS、IPS和NSM引擎。 Suricata 8.0.0版本存在代码问题漏洞,该漏洞源于解码subjectaltname包含空字节时使用tls.subjectaltname关键字,可能导致分段违规。
Description (English)
Suricata is a web-based IDS, IPS and NSM engine of the Open Information Security Foundation. Version 8.0.0 of Suricata has a code problem loophole, which stems from the use of tls.subjectaltname keywords when decoded subprojectaltname contains empty bytes, which may result in a breakout.
Hazard Level
Medium
Vulnerability Type
代码问题
Affected Vendor
Open Information Security
Published
2025-10-01
Last Modified
2026-02-24
References
https://forum.suricata.io/t/suricata-8-0-1-and-7-0-12-released/6018 https://github.com/OISF/suricata/commit/d590fdfe42e995fd558315f0c24f9a352e21479d https://github.com/OISF/suricata/security/advisories/GHSA-mhv7-qfmj-m3f3 https://redmine.openinfosecfoundation.org/issues/7881