CVE-2018-14568 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2018-14568 Interim 1 6 2025-08-14T02:31:04Z current 2021-05-30T14:15:31Z 2025-08-14T02:31:04Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2018-14568 Suricata before 4.0.5 stops TCP stream inspection upon a TCP RST from a server. This allows detection bypass because Windows TCP clients proceed with normal processing of TCP data that arrives shortly after an RST (i.e., they act as if the RST had not yet been received). The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://www.suse.com/support/security/rating/ SUSE Security Ratings openSUSE Tumbleweed libsuricata8_0_0-8.0.0-1.1 suricata-8.0.0-1.1 suricata-devel-8.0.0-1.1 libsuricata8_0_0-8.0.0-1.1 as a component of openSUSE Tumbleweed suricata-8.0.0-1.1 as a component of openSUSE Tumbleweed suricata-devel-8.0.0-1.1 as a component of openSUSE Tumbleweed Suricata before 4.0.5 stops TCP stream inspection upon a TCP RST from a server. This allows detection bypass because Windows TCP clients proceed with normal processing of TCP data that arrives shortly after an RST (i.e., they act as if the RST had not yet been received). CVE-2018-14568 openSUSE Tumbleweed:libsuricata8_0_0-8.0.0-1.1 openSUSE Tumbleweed:suricata-8.0.0-1.1 openSUSE Tumbleweed:suricata-devel-8.0.0-1.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:P/A:N 7.5 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N