CVE-2026-31935 in Suricata
Сводка (Английский)
Suricata is a network IDS, IPS and NSM engine. Prior to versions 7.0.15 and 8.0.4, flooding of craft HTTP2 continuation frames can lead to memory exhaustion, usually resulting in the Suricata process being shut down by the operating system. This issue has been patched in versions 7.0.15 and 8.0.4.
If you want to get best quality of vulnerability data, you may have to visit VulDB.
Ответственный
GitHub_M
Резервировать
10.03.2026
Раскрытие
02.04.2026
Статус
Подтверждённый
Записи
VulDB provides additional information and datapoints for this CVE:
| ИД | Уязвимость | CWE | Экс | Кон | CVE |
|---|---|---|---|---|---|
| 354883 | OISF Suricata HTTP/2 CONTINUATION Frame отказ в обслуживании | 400 | Не определено | Официальное исправление | CVE-2026-31935 |