An issue was discovered in Suricata 4.1.4. By sending multiple fragmented IPv4 packets, the function Defrag4Reassemble in defrag.c tries to access a memory region that is not allocated, because of a lack of header_len checking.
References
Link | Resource |
---|---|
https://lists.openinfosecfoundation.org/pipermail/oisf-announce/ | Third Party Advisory |
https://suricata-ids.org/2019/09/24/suricata-4-1-5-released/ | Release Notes Vendor Advisory |
https://www.code-intelligence.com/cve-2019-16410 |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2019-09-24T19:21:40
Updated: 2019-10-18T11:50:01
Reserved: 2019-09-18T00:00:00
Link: CVE-2019-16410
JSON object: View
NVD Information
Status : Modified
Published: 2019-09-24T20:15:11.870
Modified: 2019-10-18T12:15:09.940
Link: CVE-2019-16410
JSON object: View
Redhat Information
No data.
CWE