Memory Access Issue in Suricata 4.1.4 by Open Information Security Foundation
CVE-2019-16411

9.8CRITICAL

Key Information:

Vendor

Suricata-ids

Status
Suricata
Vendor
CVE Published:
24 September 2019

What is CVE-2019-16411?

A vulnerability exists in Suricata 4.1.4 that could be exploited by sending multiple invalid IPv4 packets, specifically those with incorrect IPv4Options. The underlying function, IPV4OptValidateTimestamp, attempts to access an unallocated memory region, resulting in potential unexpected behavior or application crashes. The flaw relates to attempting to read beyond the allocated data size by misinterpreting the packet length checks, which can introduce serious security risks if exploited.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

https://lists.openinfosecfoundation.org/pipermail/oisf-an...
x_refsource_MISC
https://suricata-ids.org/2019/09/24/suricata-4-1-5-released/
x_refsource_MISC
https://www.code-intelligence.com/cve-2019-16411
x_refsource_MISC

CVSS V3.1

Score:
9.8
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.