CVE-2025-64334
published 2025-11-26CVE-2025-64334: Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. In versions from 8.0.0…
PriorityP339high7.5CVSS 3.1
AVNACLPRNUINSUCNINAH
EPSS
0.31%
22.2th percentile
Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. In versions from 8.0.0 to before 8.0.2, compressed HTTP data can lead to unbounded memory growth during decompression. This issue has been patched in version 8.0.2. A workaround involves disabling LZMA decompression or limiting response-body-limit size.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | suricata | < suricata 1:8.0.2-1 (forky) | suricata 1:8.0.2-1 (forky) |
| oisf | suricata | — | — |
| oisf | suricata | >= 0 < 1:8.0.2-1 | 1:8.0.2-1 |
| oisf | suricata | >= 8.0.0 < 8.0.2 | 8.0.2 |
CVSS provenance
nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
osv7.5HIGH
vendor_debian7.5LOW
vendor_redhat7.5HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Red Hat
Suricata: Suricata: Unbounded memory growth via compressed HTTP data
vendor_redhat·2025-11-26·CVSS 7.5
CVE-2025-64334 [HIGH] CWE-770 Suricata: Suricata: Unbounded memory growth via compressed HTTP data
Suricata: Suricata: Unbounded memory growth via compressed HTTP data
Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. In versions from 8.0.0 to before 8.0.2, compressed HTTP data can lead to unbounded memory growth during decompression. This issue has been patched in version 8.0.2. A workaround involves disabling LZMA decompression or limiting response-body-limit size.
A flaw was found in Suricata. This vulnerability allows unbounded memory growth during decompression via compressed HTTP data.
Statement: The highest threat is to system availability due to unbounded memory growth when processing compressed HTTP data. This issue affects Suricata when configured to inspect HTTP traffic that includes compr
Debian
CVE-2025-64334: suricata - Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Inform...
vendor_debian·2025·CVSS 7.5
CVE-2025-64334 [HIGH] CVE-2025-64334: suricata - Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Inform...
Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. In versions from 8.0.0 to before 8.0.2, compressed HTTP data can lead to unbounded memory growth during decompression. This issue has been patched in version 8.0.2. A workaround involves disabling LZMA decompression or limiting response-body-limit size.
Scope: local
bookworm: resolved
bullseye: resolved
forky: resolved (fixed in 1:8.0.2-1)
sid: resolved (fixed in 1:8.0.2-1)
trixie: resolved
OSV
CVE-2025-64334: Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community
osv·2025-11-26·CVSS 7.5
CVE-2025-64334 [HIGH] CVE-2025-64334: Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community
Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. In versions from 8.0.0 to before 8.0.2, compressed HTTP data can lead to unbounded memory growth during decompression. This issue has been patched in version 8.0.2. A workaround involves disabling LZMA decompression or limiting response-body-limit size.
No detection rules found.
No public exploits indexed.
2025-11-26
Published