NextGuard
UNKNOWNCVE-2026-31935

Suricata http2: unbounded resource consumption

Platform

linux

Component

suricata

Fixed in

7.0.15

View on NVD

Suricata is a network IDS, IPS and NSM engine. Prior to versions 7.0.15 and 8.0.4, flooding of craft HTTP2 continuation frames can lead to memory exhaustion, usually resulting in the Suricata process being shut down by the operating system. This issue has been patched in versions 7.0.15 and 8.0.4.

How to fix

Actualice Suricata a la versión 7.0.15 o 8.0.4, o una versión posterior. Esto corregirá la vulnerabilidad de consumo excesivo de recursos causada por la inundación de marcos de continuación HTTP2.

Monitor your dependencies automatically

Get notified when new vulnerabilities affect your projects. Free forever.

Start free