Suricata: Security Fix for CVE-2024-37151, CVE-2024-38534, CVE-2024-38535, CVE-2024-38536 - linux/meta-security.git - Mirror of git.yoctoproject.org/meta-security.git

diff options

author	Siddharth Doshi <sdoshi@mvista.com>	2024-07-16 21:07:31 +0530
committer	Armin Kuster <akuster808@gmail.com>	2024-07-29 20:07:01 -0400
commit	f0deac37873e0e4c2f7adcdfa6846679743a600f (patch)
tree	c2c13056de67868180078d47e666cd995b409295 /dynamic-layers/meta-python/recipes-devtools/python/python3-flask-script_2.0.6.bb
parent	6880ab150e1d09d7de6763453db95d1a832fbabd (diff)
download	meta-security-f0deac37873e0e4c2f7adcdfa6846679743a600f.tar.gz

Suricata: Security Fix for CVE-2024-37151, CVE-2024-38534, CVE-2024-38535, CVE-2024-38536

Upstream-Status: Backport from [https://github.com/OISF/suricata/commit/aab7f35c76721df19403a7c0c0025feae12f3b6b, https://github.com/OISF/suricata/commit/a753cdbe84caee3b66d0bf49b2712d29a50d67ae, https://github.com/OISF/suricata/commit/c82fa5ca0d1ce0bd8f936e0b860707a6571373b2, https://github.com/OISF/suricata/commit/2bd3bd0e318f19008e9fe068ab17277c530ffb92] CVE's Fixed: CVE-2024-37151 suricata: suricata: packet reassembly failure, which can lead to policy bypass CVE-2024-38534 suricata: suricata: Crafted modbus traffic can lead to unlimited resource accumulation within a flow CVE-2024-38535 suricata: Suricata: can run out of memory when parsing crafted HTTP/2 traffic CVE-2024-38536 suricata: NULL pointer dereference when http.memcap is reached Signed-off-by: Siddharth Doshi <sdoshi@mvista.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>

Diffstat (limited to 'dynamic-layers/meta-python/recipes-devtools/python/python3-flask-script_2.0.6.bb')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: