Update of the Suricata attack detection system with the elimination of a critical vulnerability
The OISF (Open Information Security Foundation) has published corrective releases of the Suricata network intrusion detection and prevention system 6.0.3 and 5.0.7, which eliminate the critical vulnerability CVE-2021-35063. The problem makes it possible to bypass any Suricata analyzers and checks. The vulnerability is caused by disabling flow analysis for packets with a non-zero ACK value but no ACK bit set, allowing […]