Simen Lybekk

**Name of the Vulnerable Software and Affected Versions** Suricata versions prior to 7.0.8 **Description** The issue is related to a stack overflow caused by a large input buffer to certain transform functions, including `to lowercase`, `to uppercase`, `strip whitespace`, `compress whitespace`, `dotprefix`, `header lowercase`, `strip pseudo headers`, `url decode`, or `xor`. This can lead to Suricata crashing. The problem has been addressed in Suricata 7.0.8. **Recommendations** For Suricata versions prior to 7.0.8, update to Suricata 7.0.8 to resolve the issue. As a temporary workaround, consider restricting the input buffer size to the transform functions to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Suricata versions prior to 7.0.8 **Description** The issue is related to a buffer overflow in the Suricata system, which can be caused by a specially crafted TCP stream. This can lead to a very large buffer overflow while being zero-filled during initialization with memset due to an unsigned integer underflow. The problem is associated with the `StreamingBufferSlideToOffsetWithRegions()` function and can allow a remote attacker to execute arbitrary code or cause a denial of service. **Recommendations** For Suricata versions prior to 7.0.8, update to Suricata 7.0.8 to address the issue. As a temporary workaround, consider restricting access to the vulnerable `StreamingBufferSlideToOffsetWithRegions()` function until a patch is available.