Primary

Context

Suricata Stack Overflow Vulnerability in Transform Functions Prior to 7.0.8

Vulnerability

Patched

A stack overflow vulnerability has been identified in Suricata, a network intrusion detection and prevention system, prior to version 7.0.8. This vulnerability arises from a large input buffer to various transform functions, including to_lowercase, to_uppercase, strip_whitespace, compress_whitespace, dotprefix, header_lowercase, strip_pseudo_headers, url_decode, and xor. The overflow can cause Suricata to crash.

Impact

Exploitation of this vulnerability leads to a stack overflow, causing Suricata to crash.

Remediation

Users can upgrade to Suricata version 7.0.8 or later to address this vulnerability. Additionally, it is recommended to avoid using the affected transform functions on 'file.data' sticky buffers.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

2.4

impact

2.5

exploitability

4.7

remediation

7.9

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

2.4

impact

2.5

exploitability

4.7

remediation

7.9

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Suricata Stack Overflow Vulnerability in Transform Functions Prior to 7.0.8

Vulnerability

Impact

Remediation

Affected Products

OISF Suricata

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating