Suricata is vulnerable to unbounded memory growth for decompression

7.5 / 10

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Description

Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. In versions from 8.0.0 to before 8.0.2, compressed HTTP data can lead to unbounded memory growth during decompression. This issue has been patched in version 8.0.2. A workaround involves disabling LZMA decompression or limiting response-body-limit size.

Basic Information

ID CVE-2025-64334

Source GitHub_M

Published Nov 26, 2025 at 22:39

Affected Product

Vendor OISF

Product suricata

Version >= 8.0.0, < 8.0.2

Affected Versions OISF suricata >= 8.0.0, < 8.0.2

CWE Classification

CWE-770

References

{
    "lastseen": "",
    "description": "Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. In versions from 8.0.0 to before 8.0.2, compressed HTTP data can lead to unbounded memory growth during decompression. This issue has been patched in version 8.0.2. A workaround involves disabling LZMA decompression or limiting response-body-limit size.",
    "published": "2025-11-26T22:39:15.552Z",
    "modified": "2025-11-26T22:39:15.552Z",
    "type": "cve",
    "title": "Suricata is vulnerable to unbounded memory growth for decompression",
    "source": "GitHub_M",
    "references": "https://github.com/OISF/suricata/security/advisories/GHSA-r5jf-v2gx-gx8w\nhttps://github.com/OISF/suricata/commit/00f04daa3a44928dfdd0003cb9735469272c94a1",
    "id": "CVE-2025-64334",
    "bulletinFamily": "",
    "cwe": [
        "CWE-770"
    ],
    "cvelist": null,
    "sourceData": "OISF suricata >= 8.0.0, < 8.0.2",
    "sourceHref": "",
    "cvss": {
        "score": 7.5,
        "severity": "HIGH",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "suricata",
    "version": ">= 8.0.0, < 8.0.2",
    "vendor": "OISF",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

Suricata is vulnerable to unbounded memory growth for decompression_CVE-2025-64334