CVE-2024-38535
Suricata http2: oom from duplicate headers
We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.
Please see our statement on Data Privacy.
Suricata http2: oom from duplicate headers
| Assigner | GitHub_M |
| Reserved | 2024-06-18 |
| Published | 2024-07-11 |
| Updated | 2024-08-02 |
Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Suricata can run out of memory when parsing crafted HTTP/2 traffic. Upgrade to 6.0.20 or 7.0.6.
| CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
CWE-770: Allocation of Resources Without Limits or Throttling
https://github.com/OISF/suricata/security/advisories/GHSA-cg8j-7mwm-v563
https://github.com/OISF/suricata/commit/62d5cac1b8483d5f9d2b79833a4e59f5d80129b7
https://github.com/OISF/suricata/commit/c82fa5ca0d1ce0bd8f936e0b860707a6571373b2
https://redmine.openinfosecfoundation.org/issues/7104
https://redmine.openinfosecfoundation.org/issues/7105
https://redmine.openinfosecfoundation.org/issues/7112
