Fedora alert FEDORA-2015-0727 (suricata)
| From: | updates@fedoraproject.org | |
| To: | package-announce@lists.fedoraproject.org | |
| Subject: | [SECURITY] Fedora 21 Update: suricata-2.0.6-1.fc21 | |
| Date: | Wed, 28 Jan 2015 19:53:42 +0000 | |
| Message-ID: | <20150128195344.B60EF6049465@bastion01.phx2.fedoraproject.org> |
-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2015-0727 2015-01-17 04:39:00 -------------------------------------------------------------------------------- Name : suricata Product : Fedora 21 Version : 2.0.6 Release : 1.fc21 URL : http://suricata-ids.org/ Summary : Intrusion Detection System Description : The Suricata Engine is an Open Source Next Generation Intrusion Detection and Prevention Engine. This engine is not intended to just replace or emulate the existing tools in the industry, but will bring new ideas and technologies to the field. This new Engine supports Multi-threading, Automatic Protocol Detection (IP, TCP, UDP, ICMP, HTTP, TLS, FTP and SMB! ), Gzip Decompression, Fast IP Matching, and GeoIP identification. -------------------------------------------------------------------------------- Update Information: This is a new upstream release fixing several serious bugs: reports of eveasion issues, sequence gaps in tcp stream reassembly under TLS detection, segfault in libhtp 0.5.15 which can lead to denial of service, and several others. See change log for details. -------------------------------------------------------------------------------- ChangeLog: * Thu Jan 15 2015 Steve Grubb <sgrubb@redhat.com> 2.0.6-1 - New upstream bug fix release - Don't use the system libhtp library * Fri Dec 12 2014 Steve Grubb <sgrubb@redhat.com> 2.0.5-1 - New upstream bug fix release - Use the system libhtp library -------------------------------------------------------------------------------- References: [ 1 ] Bug #1173605 - libhtp: denial of service with specific packets https://bugzilla.redhat.com/show_bug.cgi?id=1173605 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update suricata' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list package-announce@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/package-...