Off-by-one in Suricata - CVE-2024-45796
Published: October 16, 2024 / Updated: April 27, 2026
Suricata
Detailed vulnerability description
The vulnerability allows a remote attacker to bypass policy enforcement.
The vulnerability exists due to an off-by-one error in the defragmentation and fragment reassembly logic when processing crafted fragmented packets. A remote attacker can send specially crafted packets to bypass policy enforcement.
Valid traffic may fail reassembly when the issue is triggered.