QwikSec

Security Database

CVE

CWE

Training

CVE-2017-15377

Published: Oct 23, 2017

Modified: Aug 5, 2024

PUBLISHED

Description

In Suricata before 4.x, it was possible to trigger lots of redundant checks on the content of crafted network traffic with a certain signature, because of DetectEngineContentInspection in detect-engine-content-inspection.c. The search engine doesn't stop when it should after no match is found; instead, it stops only upon reaching inspection-recursion-limit (3000 by default).

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

[debian-lts-announce] 20181204 [SECURITY] [DLA 1603-1] suricata security update

mailing-list

x_refsource_MLIST

https://redmine.openinfosecfoundation.org/issues/2231

x_refsource_MISC

https://github.com/OISF/suricata/commit/b9579fbe7dd408200ef03cbe20efddb624b73885

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.