Suricata 4.1.3 Vulnerability Affecting File Tracker Functionality
CVE-2019-10051

7.5HIGH

Key Information:

Vendor

Suricata-ids

Status
Suricata
Vendor
CVE Published:
28 August 2019

What is CVE-2019-10051?

A vulnerability was identified in Suricata version 4.1.3, specifically affecting the file tracking functionality. If the function filetracker_newchunk processes an unsafe item, the program experiences an error leading to a crash. This issue is linked to how the software handles certain inputs, revealing potential weaknesses that could be exploited to disrupt normal operation. Users are advised to review the latest updates and patches provided by the Open Information Security Foundation to mitigate this risk.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

https://suricata-ids.org/2019/04/30/suricata-4-1-4-released/
x_refsource_CONFIRM
https://redmine.openinfosecfoundation.org/issues/2896
x_refsource_MISC
https://github.com/OISF/suricata/pull/3734
x_refsource_MISC

CVSS V3.1

Score:
7.5
Severity:
HIGH
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.