[Git][security-tracker-team/security-tracker][master] suricata spu and update tracking for issues specific to 8.x
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Fri Apr 24 07:21:24 BST 2026
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
949139ef by Moritz Muehlenhoff at 2026-04-24T08:20:49+02:00
suricata spu and update tracking for issues specific to 8.x
- - - - -
2 changed files:
- data/CVE/list
- data/next-point-update.txt
Changes:
=====================================
data/CVE/list
=====================================
@@ -11650,12 +11650,16 @@ CVE-2026-32145 (Allocation of Resources Without Limits or Throttling vulnerabili
NOT-FOR-US: gleam-wisp wisp
CVE-2026-31937 (Suricata is a network IDS, IPS and NSM engine. Prior to version 7.0.15 ...)
- suricata 1:8.0.1-1
+ [trixie] - suricata <no-dsa> (Minor issue)
+ [bookworm] - suricata <no-dsa> (Minor issue)
NOTE: https://github.com/OISF/suricata/security/advisories/GHSA-86vg-w8vm-m3gg
NOTE: https://redmine.openinfosecfoundation.org/issues/8304
NOTE: Fixed in main via https://redmine.openinfosecfoundation.org/issues/5699
NOTE: https://github.com/OISF/suricata/commit/281f419c0481f7d24d8ce5482b962673a3938e9b (suricata-7.0.15)
CVE-2026-31935 (Suricata is a network IDS, IPS and NSM engine. Prior to versions 7.0.1 ...)
- suricata 1:8.0.4-1
+ [trixie] - suricata <no-dsa> (Minor issue)
+ [bookworm] - suricata <no-dsa> (Minor issue)
NOTE: https://github.com/OISF/suricata/security/advisories/GHSA-vxrp-5pg7-7v4x
NOTE: https://redmine.openinfosecfoundation.org/issues/8295 (suricata-8.0.4)
NOTE: https://redmine.openinfosecfoundation.org/issues/8296 (suricata-7.0.15)
@@ -11663,11 +11667,17 @@ CVE-2026-31935 (Suricata is a network IDS, IPS and NSM engine. Prior to versions
NOTE: https://github.com/OISF/suricata/commit/82b7c9c35aaebf8a2811bdb703dd51c2fa0693c2 (suricata-7.0.15)
CVE-2026-31934 (Suricata is a network IDS, IPS and NSM engine. From version 8.0.0 to b ...)
- suricata 1:8.0.4-1
+ [trixie] - suricata <not-affected> (Vulnerable code not present)
+ [bookworm] - suricata <not-affected> (Vulnerable code not present)
+ [bullseye] - suricata <not-affected> (Vulnerable code not present)
NOTE: https://github.com/OISF/suricata/security/advisories/GHSA-hr89-h2pp-f3c8
NOTE: https://redmine.openinfosecfoundation.org/issues/8293
NOTE: https://github.com/OISF/suricata/commit/7a670e9b7a1d55ed170940da1777b32ff42edad2 (suricata-8.0.4)
+ NOTE: Introduced by: https://github.com/OISF/suricata/commit/a10c1f1dded570f99c4972ef9f730cec79218b75 (suricata-8.0.0-beta1)
CVE-2026-31933 (Suricata is a network IDS, IPS and NSM engine. Prior to versions 7.0.1 ...)
- suricata 1:8.0.4-1
+ [trixie] - suricata <no-dsa> (Minor issue)
+ [bookworm] - suricata <no-dsa> (Minor issue)
NOTE: https://github.com/OISF/suricata/security/advisories/GHSA-hvp5-gpr6-j4gp
NOTE: https://redmine.openinfosecfoundation.org/issues/8364 (suricata-8.0.4)
NOTE: https://redmine.openinfosecfoundation.org/issues/8365 (suricata-7.0.15)
@@ -11675,6 +11685,8 @@ CVE-2026-31933 (Suricata is a network IDS, IPS and NSM engine. Prior to versions
NOTE: https://github.com/OISF/suricata/commit/fecaa08f591c508b6486e7e9a2ee05636d1f9503 (suricata-7.0.15)
CVE-2026-31932 (Suricata is a network IDS, IPS and NSM engine. Prior to versions 7.0.1 ...)
- suricata 1:8.0.4-1
+ [trixie] - suricata <no-dsa> (Minor issue)
+ [bookworm] - suricata <no-dsa> (Minor issue)
NOTE: https://github.com/OISF/suricata/security/advisories/GHSA-rp9m-jcpw-hggr
NOTE: https://redmine.openinfosecfoundation.org/issues/8306 (suricata-8.0.4)
NOTE: https://redmine.openinfosecfoundation.org/issues/8307 (suricata-7.0.15)
@@ -11682,9 +11694,13 @@ CVE-2026-31932 (Suricata is a network IDS, IPS and NSM engine. Prior to versions
NOTE: https://github.com/OISF/suricata/commit/4c51a74e2e3a06d352dcac5a720450a392c5c5b2 (suricata-7.0.15)
CVE-2026-31931 (Suricata is a network IDS, IPS and NSM engine. From version 8.0.0 to b ...)
- suricata 1:8.0.4-1
+ [trixie] - suricata <not-affected> (Vulnerable code not present)
+ [bookworm] - suricata <not-affected> (Vulnerable code not present)
+ [bullseye] - suricata <not-affected> (Vulnerable code not present)
NOTE: https://github.com/OISF/suricata/security/advisories/GHSA-gr22-4784-xvw3
NOTE: https://redmine.openinfosecfoundation.org/issues/8297
- NOTE: https://github.com/OISF/suricata/commit/632acbe74cb187a292a25945835a99a65311dd57 (suricata-8.0.4)
+ NOTE: Fixed by: https://github.com/OISF/suricata/commit/632acbe74cb187a292a25945835a99a65311dd57 (suricata-8.0.4)
+ NOTE: Introduced by: https://github.com/OISF/suricata/commit/6c1238b7bd0943054cf3eef1128ba1f02418238f (suricata-8.0.0-rc1)
CVE-2026-30867 (CocoaMQTT is a MQTT 5.0 client library for iOS and macOS written in Sw ...)
NOT-FOR-US: CocoaMQTT
CVE-2026-30603 (An issue in the firmware update mechanism of Qianniao QN-L23PA0904 v20 ...)
=====================================
data/next-point-update.txt
=====================================
@@ -312,3 +312,11 @@ CVE-2026-40261
[trixie] - composer 2.8.8-1+deb13u2
CVE-2026-40176
[trixie] - composer 2.8.8-1+deb13u2
+CVE-2026-31932
+ [trixie] - suricata 1:7.0.10-1+deb13u4
+CVE-2026-31933
+ [trixie] - suricata 1:7.0.10-1+deb13u4
+CVE-2026-31935
+ [trixie] - suricata 1:7.0.10-1+deb13u4
+CVE-2026-31937
+ [trixie] - suricata 1:7.0.10-1+deb13u4
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/949139ef1e7a44af5690305d4279311576ea758b
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/949139ef1e7a44af5690305d4279311576ea758b
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260424/4de8ce25/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list