DEBIAN-CVE-2016-10728

DEBIAN-CVE-2016-10728 PUBLISHED CVSS 5.300000190734863 MEDIUM

An issue was discovered in Suricata before 3.1.2. If an ICMPv4 error packet is received as the first packet on a flow in the to_client direction, it confuses the rule grouping lookup logic. The toclient inspection will then continue with the wrong rule group. This can lead to missed detection.

Risk Scores

CVSS v3.0

5.300000190734863

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Affected Products

Vendor	Product	Versions
Debian:14	suricata	0, 0, 0
Debian:12	suricata	0, 0
Debian:13	suricata	0, 0, 0
Debian:11	suricata	0, 0, 0

Timeline

Jul 23, 2018 CVE Published
May 16, 2026 CVE Updated

References

https://security-tracker.debian.org/tracker/CVE-2016-10728 advisory

Open in Interactive Console →