{"id":"CVE-2025-59149","summary":"Suricata: Stack buffer overflow in rule parser when processing long keywords with transforms","details":"Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. In version 8.0.0, rules using keyword ldap.responses.attribute_type (which is long) with transforms can lead to a stack buffer overflow during Suricata startup or during a rule reload. This issue is fixed in version 8.0.1. To workaround this issue, users can disable rules with ldap.responses.attribute_type and transforms.","aliases":["GHSA-vxcg-38x4-gj7j"],"modified":"2026-04-02T12:56:47.536964Z","published":"2025-10-01T20:07:44.042Z","related":["openSUSE-SU-2025:15592-1"],"database_specific":{"osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/59xxx/CVE-2025-59149.json","cwe_ids":["CWE-121"],"cna_assigner":"GitHub_M"},"references":[{"type":"WEB","url":"https://forum.suricata.io/t/suricata-8-0-1-and-7-0-12-released/6018"},{"type":"WEB","url":"https://redmine.openinfosecfoundation.org/issues/7861"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/59xxx/CVE-2025-59149.json"},{"type":"ADVISORY","url":"https://github.com/OISF/suricata/security/advisories/GHSA-vxcg-38x4-gj7j"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-59149"},{"type":"FIX","url":"https://github.com/OISF/suricata/commit/38a2cba5c397002047d84645f5ab770ff88020e1"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/oisf/suricata","events":[{"introduced":"9956286fb89f9cad9e9f95b99dc751f8666617b7"},{"fixed":"2444feed0d5ff5beb52e4d6e1f7ece487f3de179"}]}],"versions":["suricata-8.0.0"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-59149.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}]}