2358972 – (CVE-2025-29918) CVE-2025-29918 Suricata: Suricata pcre: negated pcr can cause infinite loop

Bug 2358972 (CVE-2025-29918) - CVE-2025-29918 Suricata: Suricata pcre: negated pcr can cause infinite loop

Summary: CVE-2025-29918 Suricata: Suricata pcre: negated pcr can cause infinite loop

Keywords:
Status:	NEW
Alias:	CVE-2025-29918
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Product Security DevOps Team
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:	2358994 2358995 2358996 2358997
Blocks:
TreeView+	depends on / blocked

Reported:	2025-04-10 22:01 UTC by OSIDB Bzimport
Modified:	2025-04-11 04:35 UTC (History)
CC List:	0 users
Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments	(Terms of Use)

Description OSIDB Bzimport 2025-04-10 22:01:12 UTC

Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. A PCRE rule can be written that leads to an infinite loop when negated PCRE is used. Packet processing thread becomes stuck in infinite loop limiting visibility and availability in inline mode. This vulnerability is fixed in 7.0.9.

Note You need to log in before you can comment on or make changes to this bug.