CNNVD-202511-2830 Information

CNNVD ID

CNNVD-202511-2830

Related CVE

CVE-2025-64330

• CNNVD Published: 2025-11-26

Description (Chinese)

Suricata是Open Information Security基金会的一个网络IDS、IPS和NSM引擎。 Suricata 7.0.13之前版本和8.0.2之前版本存在安全漏洞，该漏洞源于记录eve.alert和eve.drop时存在堆溢出，可能导致崩溃。

Description (English)

Suricata is a web-based IDS, IPS and NSM engine of the Open Information Security Foundation. Suricata before 7.0.13 and before 8.0.2, there is a security loophole, which stems from the spilling of records ve.alert and ve.drop, which could lead to a breakdown.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

Open Information Security

Published

2025-11-26

Last Modified

2026-02-24

References

https://github.com/OISF/suricata/commit/482e5eac9218d007adbe2410d6c00173368ce947 https://github.com/OISF/suricata/security/advisories/GHSA-83v7-gm34-f437

Patch

https://github.com/OISF/suricata/releases