PT-2025-38268 · Open Information Security Foundation+1 · Suricata+1

Victorjulien

·

Published

2025-09-16

·

Updated

2025-11-07

·

CVE-2025-59149

CVSS v3.1

6.2

Medium

VectorAV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions Suricata versions prior to 8.0.1
Description Suricata, a network IDS, IPS and NSM engine, contains a flaw where rules utilizing the ldap.responses.attribute type keyword, in conjunction with transforms, can cause a stack buffer overflow. This overflow can occur during Suricata startup or when rules are reloaded. The issue is present in version 8.0.0.
Recommendations Disable rules that use ldap.responses.attribute type and transforms. Update to version 8.0.1 or later.

Exploit

Fix

Stack Overflow

Weakness Enumeration

CWE-121

Related Identifiers

ALT-PU-2025-14099
BDU:2025-14723
CVE-2025-59149
GHSA-VXCG-38X4-GJ7J
OPENSUSE-SU-2025:15592-1

Affected Products

Alt Linux
Suricata