Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Suricata segfault on StreamingBufferSlideToOffsetWithRegions
Vulnerability Description
Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to 7.0.8, a specially crafted TCP stream can lead to a very large buffer overflow while being zero-filled during initialization with memset due to an unsigned integer underflow. The issue has been addressed in Suricata 7.0.8.
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
Vulnerability Type
整数下溢(超界折返)
Vulnerability Title
Suricata 安全漏洞
Vulnerability Description
Suricata是Open Information Security基金会的一个网络IDS、IPS和NSM引擎。 Suricata 7.0.8之前版本存在安全漏洞,该漏洞源于无符号整数下溢,在使用memset初始化期间用零填充时,特制的TCP流可能会导致非常大的缓冲区溢出。
CVSS Information
N/A
Vulnerability Type
N/A