CVE-2024-55605 Information
Description
Suricata is a network Intrusion Detection System Intrusion Prevention System and Network Security Monitoring engine. Prior to 7.0.8 a large input buffer to the to_lowercase to_uppercase strip_whitespace compress_whitespace dotprefix header_lowercase strip_pseudo_headers url_decode or xor transform can lead to a stack overflow causing Suricata to crash. The issue has been addressed in Suricata 7.0.8.
Reference
https://github.com/OISF/suricata/security/advisories/GHSA-x2hr-33vp-w289 https://redmine.openinfosecfoundation.org/issues/7229 Suricata is a network Intrusion Detection System Intrusion Prevention System and Network Security Monitoring engine. Prior to 7.0.8 a large input buffer to the to_lowercase to_uppercase strip_whitespace compress_whitespace dotprefix header_lowercase strip_pseudo_headers url_decode or xor transform can lead to a stack overflow causing Suricata to crash. The issue has been addressed in Suricata 7.0.8.
Share on: