CVE-2024-23835

Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to version 7.0.3, excessive memory use during pgsql parsing could lead to OOM-related crashes. This vulnerability is patched in 7.0.3. As workaround, users can disable the pgsql app layer parser.

CVSS v3 7.5 HIGH

7.5^/10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://github.com/OISF/suricata/commit/86de7cffa7e8f06fe9d600127e7dabe89c7e81dd	Patch
https://github.com/OISF/suricata/commit/f52c033e566beafb4480c139eb18662a2870464f	Patch
https://github.com/OISF/suricata/security/advisories/GHSA-8583-353f-mvwc	Issue Tracking Vendor Advisory
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GOCOBFUTIFHOP2PZOH4ENRFXRBHIRKK4/	Mailing List
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZXJIT7R53ZXROO3I256RFUWTIW4ECK6P/	Mailing List
https://redmine.openinfosecfoundation.org/issues/6411	Issue Tracking Vendor Advisory
https://github.com/OISF/suricata/commit/86de7cffa7e8f06fe9d600127e7dabe89c7e81dd	Patch
https://github.com/OISF/suricata/commit/f52c033e566beafb4480c139eb18662a2870464f	Patch
https://github.com/OISF/suricata/security/advisories/GHSA-8583-353f-mvwc	Issue Tracking Vendor Advisory
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GOCOBFUTIFHOP2PZOH4ENRFXRBHIRKK4/	Mailing List
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZXJIT7R53ZXROO3I256RFUWTIW4ECK6P/	Mailing List
https://redmine.openinfosecfoundation.org/issues/6411	Issue Tracking Vendor Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:oisf:suricata:*:*:*:*:*:*:*:*

Configuration 2 (hide)

OR	cpe:2.3:o:fedoraproject:fedora:38:::::::*
	cpe:2.3:o:fedoraproject:fedora:39:::::::*

History

18 Dec 2024, 18:07

Type	Values Removed	Values Added
References	~~() https://github.com/OISF/suricata/commit/86de7cffa7e8f06fe9d600127e7dabe89c7e81dd -~~	() https://github.com/OISF/suricata/commit/86de7cffa7e8f06fe9d600127e7dabe89c7e81dd - Patch
References	~~() https://github.com/OISF/suricata/commit/f52c033e566beafb4480c139eb18662a2870464f -~~	() https://github.com/OISF/suricata/commit/f52c033e566beafb4480c139eb18662a2870464f - Patch
References	~~() https://github.com/OISF/suricata/security/advisories/GHSA-8583-353f-mvwc -~~	() https://github.com/OISF/suricata/security/advisories/GHSA-8583-353f-mvwc - Issue Tracking, Vendor Advisory
References	~~() https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GOCOBFUTIFHOP2PZOH4ENRFXRBHIRKK4/ -~~	() https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GOCOBFUTIFHOP2PZOH4ENRFXRBHIRKK4/ - Mailing List
References	~~() https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZXJIT7R53ZXROO3I256RFUWTIW4ECK6P/ -~~	() https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZXJIT7R53ZXROO3I256RFUWTIW4ECK6P/ - Mailing List
References	~~() https://redmine.openinfosecfoundation.org/issues/6411 -~~	() https://redmine.openinfosecfoundation.org/issues/6411 - Issue Tracking, Vendor Advisory
CPE		cpe:2.3:o:fedoraproject:fedora:39:::::::* cpe:2.3:a:oisf:suricata:::::::: cpe:2.3:o:fedoraproject:fedora:38:::::::*
First Time		Fedoraproject fedora Oisf suricata Fedoraproject Oisf

21 Nov 2024, 08:58

Type	Values Removed	Values Added
References	~~() https://github.com/OISF/suricata/commit/86de7cffa7e8f06fe9d600127e7dabe89c7e81dd -~~	() https://github.com/OISF/suricata/commit/86de7cffa7e8f06fe9d600127e7dabe89c7e81dd -
References	~~() https://github.com/OISF/suricata/commit/f52c033e566beafb4480c139eb18662a2870464f -~~	() https://github.com/OISF/suricata/commit/f52c033e566beafb4480c139eb18662a2870464f -
References	~~() https://github.com/OISF/suricata/security/advisories/GHSA-8583-353f-mvwc -~~	() https://github.com/OISF/suricata/security/advisories/GHSA-8583-353f-mvwc -
References	~~() https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GOCOBFUTIFHOP2PZOH4ENRFXRBHIRKK4/ -~~	() https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GOCOBFUTIFHOP2PZOH4ENRFXRBHIRKK4/ -
References	~~() https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZXJIT7R53ZXROO3I256RFUWTIW4ECK6P/ -~~	() https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZXJIT7R53ZXROO3I256RFUWTIW4ECK6P/ -
References	~~() https://redmine.openinfosecfoundation.org/issues/6411 -~~	() https://redmine.openinfosecfoundation.org/issues/6411 -

07 Mar 2024, 03:15

Type	Values Removed	Values Added
References		() https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZXJIT7R53ZXROO3I256RFUWTIW4ECK6P/ - () https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GOCOBFUTIFHOP2PZOH4ENRFXRBHIRKK4/ -

26 Feb 2024, 16:32

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-02-26 16:27

Updated : 2024-12-18 18:07

NVD link : CVE-2024-23835

Mitre link : CVE-2024-23835

CVE.ORG link : CVE-2024-23835

JSON object : View

Products Affected

oisf

suricata

fedoraproject

fedora

CWE

CWE-400

Uncontrolled Resource Consumption

CWE-770

Allocation of Resources Without Limits or Throttling

7.5 /10