vulnerability

Alpine Linux: CVE-2024-55628: Asymmetric Resource Consumption (Amplification)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
8	(AV:N/AC:L/Au:N/C:N/I:N/A:C)	Jan 6, 2025	Aug 8, 2025	Dec 22, 2025

Severity

CVSS

(AV:N/AC:L/Au:N/C:N/I:N/A:C)

Published

Jan 6, 2025

Added

Aug 8, 2025

Modified

Dec 22, 2025

Description

Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to version 7.0.8, DNS resource name compression can lead to small DNS messages containing very large hostnames which can be costly to decode, and lead to very large DNS log records. While there are limits in place, they were too generous. The issue has been addressed in Suricata 7.0.8.

Solution

alpine-linux-upgrade-suricata

References

CVE-2024-55628
https://attackerkb.com/topics/CVE-2024-55628
URL-https://security.alpinelinux.org/vuln/CVE-2024-55628
CWE-405
CWE-779

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today