PT-2025-38267 · Open Information Security Foundation+1 · Suricata+1

Oss-Fuzz

Publicado

2025-09-16

Atualizado

2025-11-07

CVE-2025-59148

CVSS v2.0

7.8

Alta

Vetor

AV:N/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Suricata versions 8.0.0 and earlier

Description Suricata, a network IDS, IPS and NSM engine, experiences an issue where it incorrectly handles the entropy keyword when not anchored to a "sticky" buffer. This can result in a segmentation fault. As a workaround, users can disable rules utilizing the entropy keyword or ensure they are anchored to a sticky buffer.

Recommendations Update to version 8.0.1 or later. Disable rules using the entropy keyword. Validate that rules using the entropy keyword are anchored to a sticky buffer.

Exploit

Correção

NULL Pointer Dereference

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-476

Identificadores relacionados

ALT-PU-2025-14099

BDU:2025-14724

CVE-2025-59148

GHSA-5QF6-92XG-3RR3

OPENSUSE-SU-2025:15592-1

Produtos afetados

Alt Linux

Suricata

PT-2025-38267 · Open Information Security Foundation+1 · Suricata+1

CVE-2025-59148

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 21