The MemcmpLowercase function in Suricata before 2.0.6 improperly excludes the first byte from comparisons, which might allow remote attackers to bypass intrusion-prevention functionality via a crafted HTTP request.
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "binary_version": "3.0-1", "binary_name": "suricata" }, { "binary_version": "3.0-1", "binary_name": "suricata-dbg" }, { "binary_version": "3.0-1", "binary_name": "suricata-dbgsym" } ] }