CVE-2025-29918 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2025-29918 Interim 1 1 2025-08-05T23:27:33Z current 2025-08-05T23:27:33Z 2025-08-05T23:27:33Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2025-29918 Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. A PCRE rule can be written that leads to an infinite loop when negated PCRE is used. Packet processing thread becomes stuck in infinite loop limiting visibility and availability in inline mode. This vulnerability is fixed in 7.0.9. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://www.suse.com/support/security/rating/ SUSE Security Ratings openSUSE Tumbleweed libsuricata8_0_0-8.0.0-1.1 suricata-8.0.0-1.1 suricata-devel-8.0.0-1.1 libsuricata8_0_0-8.0.0-1.1 as a component of openSUSE Tumbleweed suricata-8.0.0-1.1 as a component of openSUSE Tumbleweed suricata-devel-8.0.0-1.1 as a component of openSUSE Tumbleweed Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. A PCRE rule can be written that leads to an infinite loop when negated PCRE is used. Packet processing thread becomes stuck in infinite loop limiting visibility and availability in inline mode. This vulnerability is fixed in 7.0.9. CVE-2025-29918 openSUSE Tumbleweed:libsuricata8_0_0-8.0.0-1.1 openSUSE Tumbleweed:suricata-8.0.0-1.1 openSUSE Tumbleweed:suricata-devel-8.0.0-1.1 moderate 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H