VYPR

PyPI package

suricata-update

pkg:pypi/suricata-update

Vulnerabilities (1)

  • CVE-2018-1000167HigApr 18, 2018
    affected < 1.0.0b1fixed 1.0.0b1

    OISF suricata-update version 1.0.0a1 contains an Insecure Deserialization vulnerability in the insecure yaml.load-Function as used in the following files: config.py:136, config.py:142, sources.py:99 and sources.py:131. The "list-sources"-command is affected by this bug. that can