2319241 – (CVE-2024-47187) CVE-2024-47187 suricata: Suricata datasets: missing hashtable random seed leads to potential DoS

Bug 2319241 (CVE-2024-47187) - CVE-2024-47187 suricata: Suricata datasets: missing hashtable random seed leads to potential DoS

Summary: CVE-2024-47187 suricata: Suricata datasets: missing hashtable random seed lea...

Keywords:
Status:	NEW
Alias:	CVE-2024-47187
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	high
Severity:	high
Target Milestone:	---
Assignee:	Product Security DevOps Team
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:	2319256
Blocks:
TreeView+	depends on / blocked

Reported:	2024-10-16 19:01 UTC by OSIDB Bzimport
Modified:	2024-10-16 20:12 UTC (History)
CC List:	0 users
Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments	(Terms of Use)

Description OSIDB Bzimport 2024-10-16 19:01:25 UTC

Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to version 7.0.7, missing initialization of the random seed for "thash" leads to datasets having predictable hash table behavior. This can lead to dataset file loading to use excessive time to load, as well as runtime performance issues during traffic handling. This issue has been addressed in 7.0.7. As a workaround, avoid loading datasets from untrusted sources. Avoid dataset rules that track traffic in rules.

Note You need to log in before you can comment on or make changes to this bug.