Nixpkgs Security Tracker

Login with GitHub

Suggestions search

Dismissed
Filter by:
With package: suricata

Found 2 matching suggestions

Permalink CVE-2026-22263
updated 2 weeks ago by @LeSuisse Activity log
  • Created automatic suggestion 3 weeks, 4 days ago
  • @LeSuisse dismissed 2 weeks ago
Suricata http1: quadratic complexity in headers parsing over multiple packets

Suricata is a network IDS, IPS and NSM engine. Starting in version 8.0.0 and prior to version 8.0.3, inefficiency in http1 headers parsing can lead to slowdown over multiple packets. Version 8.0.3 patches the issue. No known workarounds are available.

Affected products

suricata
  • ==>= 8.0.0, < 8.0.3

Matching in nixpkgs

pkgs.suricata

Free and open source, mature, fast and robust network threat detection engine

Package maintainers

Supported branches are <= 8.0
Permalink CVE-2026-22260
updated 2 weeks ago by @LeSuisse Activity log
  • Created automatic suggestion 3 weeks, 2 days ago
  • @LeSuisse accepted 2 weeks ago
  • @LeSuisse dismissed 2 weeks ago
Suricata http1: infinite recursion in decompression

Suricata is a network IDS, IPS and NSM engine. Starting in version 8.0.0 and prior to version 8.0.3, Suricata can crash with a stack overflow. Version 8.0.3 patches the issue. As a workaround, use default values for `request-body-limit` and `response-body-limit`.

Affected products

suricata
  • ==>= 8.0.0, < 8.0.3

Matching in nixpkgs

pkgs.suricata

Free and open source, mature, fast and robust network threat detection engine

Package maintainers

Supported branches are <= 8.0