CNNVD-202601-4470 Information

CNNVD ID

CNNVD-202601-4470

Related CVE

CVE-2026-22263

• CNNVD Published: 2026-01-27

Description (Chinese)

Suricata是Open Information Security基金会的一个网络IDS、IPS和NSM引擎。 Suricata 8.0.0至8.0.3之前版本存在安全漏洞，该漏洞源于http1标头解析效率低下，可能导致多数据包处理时性能下降。

Description (English)

Suricata is a web-based IDS, IPS and NSM engine of the Open Information Security Foundation. Pre-Suricata 8.0.0 to 8.3 has a security gap, which stems from the inefficiency of the analysis of the http1 marker, which may lead to a decrease in performance during the processing of multiple data packages.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Open Information Security

Published

2026-01-27

Last Modified

2026-02-24

References

https://github.com/OISF/suricata/commit/018a377f74e3eb2b042c6f783ad9043060923428 https://github.com/OISF/suricata/security/advisories/GHSA-rwc5-hxj6-hwx7 https://redmine.openinfosecfoundation.org/issues/8201

Patch

https://github.com/OISF/suricata/releases