Information on source package suricata

Available versions

ReleaseVersion
jessie2.0.7-2+deb8u5
stretch3.2.1-1+deb9u1
buster1:4.1.2-2+deb10u2
bullseye1:6.0.1-3
bookworm1:6.0.10-1
trixie1:7.0.7-1
sid1:7.0.7-1

Open issues

BugjessiestretchbusterbullseyebookwormtrixiesidDescription
CVE-2024-47522vulnerablevulnerablevulnerable (no DSA, postponed)vulnerable (no DSA, postponed)vulnerable (no DSA)fixedfixedSuricata is a network Intrusion Detection System, Intrusion Prevention ...
CVE-2024-47188vulnerablevulnerablevulnerable (no DSA, postponed)vulnerable (no DSA, postponed)vulnerable (no DSA)fixedfixedSuricata is a network Intrusion Detection System, Intrusion Prevention ...
CVE-2024-47187vulnerablevulnerablevulnerable (no DSA, postponed)vulnerable (no DSA, postponed)vulnerable (no DSA)fixedfixedSuricata is a network Intrusion Detection System, Intrusion Prevention ...
CVE-2024-45796vulnerablevulnerablevulnerable (no DSA, postponed)vulnerable (no DSA, postponed)vulnerable (no DSA)fixedfixedSuricata is a network Intrusion Detection System, Intrusion Prevention ...
CVE-2024-45795vulnerablevulnerablevulnerable (no DSA, postponed)vulnerable (no DSA, postponed)vulnerable (no DSA)fixedfixedSuricata is a network Intrusion Detection System, Intrusion Prevention ...
CVE-2024-38536vulnerablevulnerablevulnerable (no DSA, postponed)vulnerable (no DSA)vulnerable (no DSA)fixedfixedSuricata is a network Intrusion Detection System, Intrusion Prevention ...
CVE-2024-38535fixedfixedfixedvulnerable (no DSA)vulnerable (no DSA)fixedfixedSuricata is a network Intrusion Detection System, Intrusion Prevention ...
CVE-2024-38534vulnerablevulnerablevulnerable (no DSA, postponed)vulnerable (no DSA)vulnerable (no DSA)fixedfixedSuricata is a network Intrusion Detection System, Intrusion Prevention ...
CVE-2024-37151vulnerablevulnerablefixedvulnerable (no DSA)vulnerable (no DSA)fixedfixedSuricata is a network Intrusion Detection System, Intrusion Prevention ...
CVE-2024-32867vulnerablevulnerablevulnerable (no DSA, postponed)vulnerable (no DSA)vulnerable (no DSA)fixedfixedSuricata is a network Intrusion Detection System, Intrusion Prevention ...
CVE-2024-32664vulnerablevulnerablevulnerable (no DSA, postponed)vulnerable (no DSA)vulnerable (no DSA)fixedfixedSuricata is a network Intrusion Detection System, Intrusion Prevention ...
CVE-2024-32663fixedfixedfixedvulnerable (no DSA)vulnerable (no DSA)fixedfixedSuricata is a network Intrusion Detection System, Intrusion Prevention ...
CVE-2024-28870vulnerablevulnerablevulnerable (no DSA, postponed)vulnerable (no DSA)vulnerable (no DSA)fixedfixedSuricata is a network Intrusion Detection System, Intrusion Prevention ...
CVE-2024-24568vulnerablevulnerablefixedfixedfixedfixedfixedSuricata is a network Intrusion Detection System, Intrusion Prevention ...
CVE-2024-23839vulnerablevulnerablefixedfixedfixedfixedfixedSuricata is a network Intrusion Detection System, Intrusion Prevention ...
CVE-2024-23836vulnerablevulnerablevulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)fixedfixedSuricata is a network Intrusion Detection System, Intrusion Prevention ...
CVE-2024-23835vulnerablevulnerablefixedfixedfixedfixedfixedSuricata is a network Intrusion Detection System, Intrusion Prevention ...
CVE-2023-35853vulnerablevulnerablevulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)fixedfixedIn Suricata before 6.0.13, an adversary who controls an external sourc ...
CVE-2023-35852vulnerablevulnerablevulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)fixedfixedIn Suricata before 6.0.13 (when there is an adversary who controls an ...
CVE-2021-45098vulnerablevulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)fixedfixedfixedAn issue was discovered in Suricata before 6.0.4. It is possible to by ...
CVE-2021-37592vulnerablevulnerable (no DSA)fixedvulnerable (no DSA)fixedfixedfixedSuricata before 5.0.8 and 6.x before 6.0.4 allows TCP evasion via a cl ...
CVE-2021-35063vulnerablevulnerable (no DSA)fixedfixedfixedfixedfixedSuricata before 5.0.7 and 6.x before 6.0.3 has a "critical evasion."
CVE-2019-1010279vulnerable (no DSA)vulnerable (no DSA)fixedfixedfixedfixedfixedOpen Information Security Foundation Suricata prior to version 4.1.3 i ...
CVE-2019-1010251vulnerable (no DSA)vulnerable (no DSA)fixedfixedfixedfixedfixedOpen Information Security Foundation Suricata prior to version 4.1.2 i ...
CVE-2019-18792fixedvulnerable (no DSA)fixedfixedfixedfixedfixedAn issue was discovered in Suricata 5.0.0. It is possible to bypass/ev ...
CVE-2019-18625fixedvulnerable (no DSA)fixedfixedfixedfixedfixedAn issue was discovered in Suricata 5.0.0. It was possible to bypass/e ...
CVE-2019-16411vulnerable (no DSA)vulnerable (no DSA)fixedfixedfixedfixedfixedAn issue was discovered in Suricata 4.1.4. By sending multiple IPv4 pa ...
CVE-2019-16410vulnerable (no DSA)vulnerable (no DSA)fixedfixedfixedfixedfixedAn issue was discovered in Suricata 4.1.4. By sending multiple fragmen ...
CVE-2019-15699fixedvulnerable (no DSA)fixedfixedfixedfixedfixedAn issue was discovered in app-layer-ssl.c in Suricata 4.1.4. Upon rec ...
CVE-2019-10056vulnerable (no DSA)vulnerable (no DSA)fixedfixedfixedfixedfixedAn issue was discovered in Suricata 4.1.3. The code mishandles the cas ...
CVE-2019-10055vulnerable (no DSA)vulnerable (no DSA)fixedfixedfixedfixedfixedAn issue was discovered in Suricata 4.1.3. The function ftp_pasv_respo ...
CVE-2019-10054vulnerable (no DSA)vulnerable (no DSA)fixedfixedfixedfixedfixedAn issue was discovered in Suricata 4.1.3. The function process_reply_ ...
CVE-2019-10053vulnerable (no DSA)vulnerable (no DSA)fixedfixedfixedfixedfixedAn issue was discovered in Suricata 4.1.x before 4.1.4. If the input o ...
CVE-2019-10052fixedvulnerable (no DSA)fixedfixedfixedfixedfixedAn issue was discovered in Suricata 4.1.3. If the network packet does ...
CVE-2019-10051fixedvulnerable (no DSA)fixedfixedfixedfixedfixedAn issue was discovered in Suricata 4.1.3. If the function filetracker ...
CVE-2019-10050vulnerable (no DSA)vulnerable (no DSA)fixedfixedfixedfixedfixedA buffer over-read issue was discovered in Suricata 4.1.x before 4.1.4 ...
CVE-2018-18956fixedvulnerable (no DSA)fixedfixedfixedfixedfixedThe ProcessMimeEntity function in util-decode-mime.c in Suricata 4.x b ...
CVE-2018-14568vulnerable (no DSA)vulnerable (no DSA)fixedfixedfixedfixedfixedSuricata before 4.0.5 stops TCP stream inspection upon a TCP RST from ...
CVE-2018-10244fixedvulnerable (no DSA)fixedfixedfixedfixedfixedSuricata version 4.0.4 incorrectly handles the parsing of an EtherNet/ ...
CVE-2018-10243fixedvulnerable (no DSA)fixedfixedfixedfixedfixedhtp_parse_authorization_digest in htp_parsers.c in LibHTP 0.5.26 allow ...
CVE-2018-10242fixedvulnerable (no DSA)fixedfixedfixedfixedfixedSuricata version 4.0.4 incorrectly handles the parsing of the SSH bann ...
CVE-2018-6794fixedvulnerable (no DSA)fixedfixedfixedfixedfixedSuricata before 4.0.4 is prone to an HTTP detection bypass vulnerabili ...
CVE-2017-15377fixedvulnerable (no DSA)fixedfixedfixedfixedfixedIn Suricata before 4.x, it was possible to trigger lots of redundant c ...

Resolved issues

BugDescription
TEMP-0856648-2BC2C9dns: out of bound memory read
TEMP-0783007-4C0B51http uri parsing issue
TEMP-0000000-C04FE8dcerpc: exit()'s on malloc failure
CVE-2017-7177Suricata before 3.2.1 has an IPv4 defragmentation evasion issue caused ...
CVE-2016-10728An issue was discovered in Suricata before 3.1.2. If an ICMPv4 error p ...
CVE-2015-8954The MemcmpLowercase function in Suricata before 2.0.6 improperly exclu ...
CVE-2015-0971The DER parser in Suricata before 2.0.8 allows remote attackers to cau ...
CVE-2015-0928libhtp 0.5.15 allows remote attackers to cause a denial of service (NU ...
CVE-2014-6603The SSHParseBanner function in SSH parser (app-layer-ssh.c) in Suricat ...
CVE-2013-5919Suricata before 1.4.6 allows remote attackers to cause a denial of ser ...

Security announcements

DSA / DLADescription
ELA-1162-1suricata - security update
DLA-2087-1suricata - security update
ELA-131-1suricata - security update
DLA-1751-1suricata - security update
DLA-1603-1suricata - security update
ELA-64-1suricata - security update
ELA-44-1suricata - security update
DLA-1508-1suricata - security update
DLA-865-1suricata - security update
DSA-3254-1suricata - security update

Search for package or bug name: Reporting problems