ByteOS Network

NVD Vulnerability Details :

CVE-2025-29918

Modified

Source-security-advisories@github.com

Published At-10 Apr, 2025 | 21:15

Updated At-03 Nov, 2025 | 20:18

Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. A PCRE rule can be written that leads to an infinite loop when negated PCRE is used. Packet processing thread becomes stuck in infinite loop limiting visibility and availability in inline mode. This vulnerability is fixed in 7.0.9.

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Secondary	3.1	6.2	MEDIUM	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Primary	3.1	5.5	MEDIUM	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Type: Secondary

Version: 3.1

Base score: 6.2

Base severity: MEDIUM

Vector:

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Type: Primary

Version: 3.1

Base score: 5.5

Base severity: MEDIUM

Vector:

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CPE Matches

oisf>>suricata>>Versions before 7.0.9(exclusive)

cpe:2.3:a:oisf:suricata:*:*:*:*:*:*:*:*

Weaknesses

CWE ID	Type	Source
CWE-835	Secondary	security-advisories@github.com

CWE ID: CWE-835

Type: Secondary

Source: security-advisories@github.com

References

Hyperlink	Source	Resource
https://github.com/OISF/suricata/commit/b14c67cbdf25fa6c7ffe0d04ddf3ebe67b12b50b	security-advisories@github.com	Patch
https://github.com/OISF/suricata/security/advisories/GHSA-924c-vvm5-9mqx	security-advisories@github.com	Vendor Advisory
https://redmine.openinfosecfoundation.org/issues/7526	security-advisories@github.com	Permissions Required
https://lists.debian.org/debian-lts-announce/2025/03/msg00029.html	af854a3a-2127-422b-91ae-364da2661108	N/A