CVE-2025-64331 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2025-64331 Interim 1 2 2026-03-05T00:27:09Z current 2025-12-23T00:15:42Z 2026-03-05T00:27:09Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2025-64331 Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. Prior to versions 7.0.13 and 8.0.2, a stack overflow can occur on large HTTP file transfers if the user has increased the HTTP response body limit and enabled the logging of printable http bodies. This issue has been patched in versions 7.0.13 and 8.0.2. A workaround for this issue involves using default HTTP response body limits and/or disabling http-body-printable logging; body logging is disabled by default. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://www.suse.com/support/security/rating/ SUSE Security Ratings openSUSE Tumbleweed libsuricata8_0_3-8.0.3-1.1 suricata-8.0.3-1.1 suricata-devel-8.0.3-1.1 libsuricata8_0_3-8.0.3-1.1 as a component of openSUSE Tumbleweed suricata-8.0.3-1.1 as a component of openSUSE Tumbleweed suricata-devel-8.0.3-1.1 as a component of openSUSE Tumbleweed Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. Prior to versions 7.0.13 and 8.0.2, a stack overflow can occur on large HTTP file transfers if the user has increased the HTTP response body limit and enabled the logging of printable http bodies. This issue has been patched in versions 7.0.13 and 8.0.2. A workaround for this issue involves using default HTTP response body limits and/or disabling http-body-printable logging; body logging is disabled by default. CVE-2025-64331 openSUSE Tumbleweed:libsuricata8_0_3-8.0.3-1.1 openSUSE Tumbleweed:suricata-8.0.3-1.1 openSUSE Tumbleweed:suricata-devel-8.0.3-1.1 important