Suricata Releases 7.0.3 and 6.0.16, Fixes Critical Vulnerabilities

OISF Publishes Update for Suricata Network Security System

The Open Information Security Foundation (OISF) has released an update to address issues with the detection and prevention system of network invasions. Suricata version 7.0.3 and 6.0.16 have been updated to eliminate five vulnerabilities, three of which have been assigned a critical level of danger (source).

The vulnerabilities, identified as CVE-2024-23839, CVE-2024-23836, and CVE-2024-23837, pose a significant risk. However, a detailed description of these vulnerabilities has not been revealed yet. It is common for vulnerabilities to be classified as critical if they allow remote attackers to execute code on the targeted system. Users of Suricata are strongly advised to update their systems promptly (source).

The specific changes made to Suricata in this update are not explicitly mentioned in the changelog. However, one of the corrections addresses a critical vulnerability related to memory handling during the processing of incorrect HTTP headers. Another critical vulnerability present in the analysis of HTTP traffic is associated with the Libhtp library (source).

/Reports, release notes, official announcements.