CVE-2024-32664
- Source
- https://cve.org/CVERecord?id=CVE-2024-32664
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-32664.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2024-32664
- Aliases
-
- GHSA-79vh-hpwq-3jh7
- Downstream
- Related
- Published
- 2024-05-07T14:57:01.967Z
- Modified
- 2026-05-19T05:58:58.393406Z
- Severity
-
- 5.3 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVSS Calculator
- Summary
- Suricata's base64 contains an out of bounds write
- Details
-
Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to 7.0.5 and 6.0.19, specially crafted traffic or datasets can cause a limited buffer overflow. This vulnerability is fixed in 7.0.5 and 6.0.19. Workarounds include not use rules with
base64_decodekeyword withbytesoption with value 1, 2 or 5 and for 7.0.x, settingapp-layer.protocols.smtp.mime.body-md5to false. - Database specific
{ "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/32xxx/CVE-2024-32664.json", "cna_assigner": "GitHub_M", "cwe_ids": [ "CWE-120", "CWE-122" ] }- References
-
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/32xxx/CVE-2024-32664.json
- https://github.com/OISF/suricata/security/advisories/GHSA-79vh-hpwq-3jh7
- https://nvd.nist.gov/vuln/detail/CVE-2024-32664
- https://github.com/OISF/suricata/commit/311002baf288a225f62cf18a90c5fdd294447379
- https://github.com/OISF/suricata/commit/d5ffecf11ad2c6fe89265e518f5d7443caf26ba4
Affected packages
Git / github.com/oisf/suricata
Database specific
vanir_signatures
[
{
"signature_type": "Line",
"digest": {
"threshold": 0.9,
"line_hashes": [
"46679933959011915951402130356142014458",
"152686793277762586364556378538153723005",
"24712848685648214478961238615451827358",
"299308388501023117808097698127344830766",
"308754288649312340994858895020941377081",
"254300812950586756234475076883955935037",
"241421372473962255925250380684720938406",
"34126542032130551298903788104990888268",
"201108913660986669710285444166741733136",
"164794786683505136590423059992333542084",
"239127772975049259354514938513769890836"
]
},
"id": "CVE-2024-32664-416a8d97",
"signature_version": "v1",
"source": "https://github.com/oisf/suricata/commit/d5ffecf11ad2c6fe89265e518f5d7443caf26ba4",
"target": {
"file": "src/util-base64.c"
},
"deprecated": false
},
{
"signature_type": "Function",
"digest": {
"function_hash": "212927719737738737265170887986709280404",
"length": 1725.0
},
"id": "CVE-2024-32664-e2392738",
"signature_version": "v1",
"source": "https://github.com/oisf/suricata/commit/d5ffecf11ad2c6fe89265e518f5d7443caf26ba4",
"target": {
"function": "DecodeBase64",
"file": "src/util-base64.c"
},
"deprecated": false
}
]
source
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-32664.json"
vanir_signatures_modified
"2026-05-19T05:58:58Z"