GitHub_MVULNRICHMENT:CVE-2024-32663CVE-2024-32663 Suricata 's http2 parser contains an improper compressed header handling can lead to resource starvation
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
AI Score
Confidence
Low
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to 7.0.5 and 6.0.19, a small amount of HTTP/2 traffic can lead to Suricata using a large amount of memory. The issue has been addressed in Suricata 7.0.5 and 6.0.19. Workarounds include disabling the HTTP/2 parser and reducing app-layer.protocols.http2.max-table-size value (default is 65536).
References
github.com/OISF/suricata/commit/08d93f7c3762781b743f88f9fdc4389eb9c3eb64
github.com/OISF/suricata/commit/c0af92295e833d1db29b184d63cd3b829451d7fd
github.com/OISF/suricata/commit/d24b37a103c04bb2667e449e080ba4c8e56bb019
github.com/OISF/suricata/commit/e68ec4b227d19498f364a41eb25d3182f0383ca5
github.com/OISF/suricata/security/advisories/GHSA-9jxm-qw9v-266r
redmine.openinfosecfoundation.org/issues/6892
redmine.openinfosecfoundation.org/issues/6900
Related
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
AI Score
Confidence
Low
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial