Fluid Attacks Database

Description

Suricata version 4.0.4 incorrectly handles the parsing of an EtherNet/IP PDU. A malformed PDU can cause the parsing code to read beyond the allocated data because DecodeENIPPDU in app-layer-enip-commmon.c has an integer overflow during a length check.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version	Patched versions
debian 11	suricata	>=0 <1:4.0.5-1	1:4.0.5-1
debian 13	suricata	>=0 <1:4.0.5-1	1:4.0.5-1
debian 14	suricata	>=0 <1:4.0.5-1	1:4.0.5-1

Aliases

1. CVE-2018-102442. NVD-2018-102443. OSV-DEBIAN-2018-102444. OSV-2018-102445. SECURITY-TRACKER-CVE-2018-10244

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.