Security #8157: eve/alert: http xff handling can lead to denial of service (8.0.x backport) - Suricata - Open Information Security Foundation

Actions

Copy link

Security #8157

closed

eve/alert: http xff handling can lead to denial of service (8.0.x backport)

Added by OISF Ticketbot 3 months ago. Updated about 1 month ago.

Status:

Closed

Priority:

High

Assignee:

Philippe Antoine

Target version:

8.0.3

Affected Versions:

Label:

CVE:

2026-22261

Git IDs:

Severity:

MODERATE

Disclosure Date:

Actions

Copy link

Updated by Jason Ish about 2 months ago

Priority changed from Normal to High

Actions

Copy link

Updated by Jason Ish about 2 months ago

Subject changed from output: alert http xff finding for non-tx alerts is not optimized (8.0.x backport) to eve/alert: http xff handling can lead to denial of service (8.0.x backport)

Actions

Copy link

Updated by Juliana Fajardini Reichow about 2 months ago

CVE set to 2026-22261

https://github.com/OISF/suricata/security/advisories/GHSA-5jvg-5j3p-34cf

Actions

Copy link

Updated by Victor Julien about 2 months ago

Status changed from Assigned to Resolved

Actions

Copy link

Updated by Jason Ish about 2 months ago

Severity set to MODERATE

Actions

Copy link

Updated by Victor Julien about 2 months ago

Status changed from Resolved to Closed

Actions

Copy link

Updated by Victor Julien about 1 month ago

Private changed from Yes to No

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

Suricata

Custom queries

Security #8157

eve/alert: http xff handling can lead to denial of service (8.0.x backport)

Updated by Jason Ish about 2 months ago

Updated by Jason Ish about 2 months ago

Updated by Juliana Fajardini Reichow about 2 months ago

Updated by Victor Julien about 2 months ago

Updated by Jason Ish about 2 months ago

Updated by Victor Julien about 2 months ago

Updated by Victor Julien about 1 month ago