CVE-2021-37592

Name
CVE-2021-37592
Description
Suricata before 5.0.8 and 6.x before 6.0.4 allows TCP evasion via a client with a crafted TCP/IP stack that can send a certain sequence of segments.
NVD Severity
high
Other trackers
CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia
Mailing lists
oss-security, full-disclosure, bugtraq
Exploits
Exploit DB, Metasploit
Forges
GitHub (code, issues), Aports (code, issues)

References

Type URI
MISC https://github.com/OISF/suricata/releases
CONFIRM https://forum.suricata.io/t/suricata-6-0-4-and-5-0-8-released/1942
CONFIRM https://redmine.openinfosecfoundation.org/issues/4569

Match rules

CPE URI Source package Min version Max version
cpe:2.3:a:oisf:suricata:*:*:*:*:*:*:*:* suricata >= None < 5.0.8
cpe:2.3:a:oisf:suricata:*:*:*:*:*:*:*:* suricata >= 6.0.0 < 6.0.4

Vulnerable and fixed packages

Source package Branch Version Maintainer Status
suricata edge-community 6.0.4-r0 Steve McMaster <code@mcmaster.io> fixed
suricata edge-community 6.0.3-r0 Steve McMaster <code@mcmaster.io> possibly vulnerable
suricata 3.22-community 6.0.4-r0 None fixed
suricata 3.22-community 6.0.3-r0 None possibly vulnerable
suricata 3.21-community 6.0.4-r0 None fixed
suricata 3.20-community 6.0.4-r0 None fixed
suricata 3.19-community 6.0.4-r0 None fixed
suricata 3.18-community 6.0.4-r0 None fixed
suricata 3.17-community 6.0.4-r0 None fixed