CVE-2025-59148
Description
Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. Versions 8.0.0 and below incorrectly handle the entropy keyword when not anchored to a sticky buffer, which can lead to a segmentation fault. This issue is fixed in version 8.0.1. To workaround this issue, users can disable rules using the entropy keyword, or validate they are anchored to a sticky buffer.
Risk Information
Base Score
7.5
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS Score
Exploitation Probability
0.087
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Vulnerabilities CVE-2025-53538,CVE-2025-59147,CVE-2025-59148,CVE-2025-59149 are affected in suricata 8.0.0-beta1 | Windows |
| Vulnerabilities CVE-2025-53538,CVE-2025-59147,CVE-2025-59148,CVE-2025-59149 are affected in suricata 8.0.0-rc1 | Windows |
| Vulnerabilities CVE-2025-59147,CVE-2025-59148,CVE-2025-59149,CVE-2025-59150 are affected in suricata 8.0.0 | Windows |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234