CVE-2025-53537

CVSS v2.0

7.8

High

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions LibHTP versions 0.5.50 and below

Description LibHTP is a security-aware parser for the HTTP protocol. Versions 0.5.50 and below contain a traffic-induced memory leak that can lead to process memory starvation and loss of visibility.

Recommendations Set suricata.yaml app-layer.protocols.http.libhtp.default-config.lzma-enabled to false. Update to version 0.5.51.

Exploit

Fix

Memory Leak

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-401

Related Identifiers

ALT-PU-2025-15218

BDU:2025-14722

CVE-2025-53537

GHSA-V3QQ-H8MH-VPH7

USN-7814-1

Affected Products

Alt Linux

Debian

Libhtp

Linuxmint

Ubuntu

CVE-2025-53537

Weakness Enumeration

Related Identifiers

Affected Products

References · 23