Alerts This Week
Warning Icon 1 1,129
Alerts This Week
Warning Icon 1 1,129

Mageia 9 MGASA-2024-0306: Moderate Suricata Packet Handling Issues

mageia
Calendar Grey September 17, 2024
Dist Mageia Esm H88
Revised Nginx bundles for Fedora solve serious vulnerability concerns, tackling request processing and memory exploitation problems.
CVE-2024-37151 Mishandling of multiple fragmented packets using the same IP ID value can lead to packet reassembly failure, which can lead to policy bypass

Summary

CVE-2024-37151 Mishandling of multiple fragmented packets using the same IP ID value can lead to packet reassembly failure, which can lead to policy bypass. CVE-2024-38534 Crafted modbus traffic can lead to unlimited resource accumulation within a flow CVE-2024-38535, CVE-2024-38536 Suricata can run out of memory when parsing crafted HTTP/2 traffic.

References

- https://bugs.mageia.org/show_bug.cgi?id=33431

- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JJWELU75TPOICUA2UGNZDY7QQJBB7HYJ/

- https://www.cve.org/CVERecord?id=CVE-2024-37151

- https://www.cve.org/CVERecord?id=CVE-2024-38534

- https://www.cve.org/CVERecord?id=CVE-2024-38535

- https://www.cve.org/CVERecord?id=CVE-2024-38536

Topics%20covered

Topics Covered

security advisory moderate severity packet handling policy bypass mageia suricata resource accumulation

Resolution

SRPMS

- 9/core/suricata-6.0.20-1.mga9

Publication date: 17 Sep 2024
URL: https://advisories.mageia.org/MGASA-2024-0306.html
Type: security
CVE: CVE-2024-37151, CVE-2024-38534, CVE-2024-38535, CVE-2024-38536

Topics%20covered

Topics Covered

security advisory moderate severity packet handling policy bypass mageia suricata resource accumulation

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here