Main Vulnerability Database Vulnerabilities #VU35587

Buffer overflow in Suricata - CVE-2019-10056

Published: August 28, 2019 / Updated: August 8, 2020

Vulnerability identifier: #VU35587

CSH Severity: Medium

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green

CVE-ID: CVE-2019-10056

CWE-ID: CWE-119

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vendor: Open Information Security Foundation

Affected software:
Suricata

Detailed vulnerability description

The vulnerability allows a remote non-authenticated attacker to perform a denial of service (DoS) attack.

An issue was discovered in Suricata 4.1.3. The code mishandles the case of sending a network packet with the right type, such that the function DecodeEthernet in decode-ethernet.c is executed a second time. At this point, the algorithm cuts the first part of the packet and doesn't determine the current length. Specifically, if the packet is exactly 28 long, in the first iteration it subtracts 14 bytes. Then, it is working with a packet length of 14. At this point, the case distinction says it is a valid packet. After that it casts the packet, but this packet has no type, and the program crashes at the type case distinction.

How to mitigate CVE-2019-10056

Install update from vendor's website.

Buffer overflow in Suricata - CVE-2019-10056

Detailed vulnerability description

How to mitigate CVE-2019-10056

Sources

Please verify you're human