Sicherheit: Denial of Service in Suricata
Aktuelle Meldungen Distributionen
Name: Denial of Service in Suricata
ID: FEDORA-2015-2790
Distribution: Fedora
Plattformen: Fedora 22
Datum: Sa, 14. März 2015, 00:12
Referenzen: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0928
Applikationen: Suricata


Name        : suricata
Product : Fedora 22
Version : 2.0.7
Release : 1.fc22
URL : http://suricata-ids.org/
Summary : Intrusion Detection System
Description :
The Suricata Engine is an Open Source Next Generation Intrusion
Detection and Prevention Engine. This engine is not intended to
just replace or emulate the existing tools in the industry, but
will bring new ideas and technologies to the field. This new Engine
supports Multi-threading, Automatic Protocol Detection (IP, TCP,
UDP, ICMP, HTTP, TLS, FTP and SMB! ), Gzip Decompression, Fast IP
Matching, and GeoIP identification.

Update Information:

This release fixes a parsing issue in the DCERPC parser that can happen when
Suricata runs out of memory. The exact scope of the problem isn’t clear, but it could certainly lead to crashes. CVE-2015-0928 is assigned for this. The second issue is certain characters in the URI could confuse the parsing of the HTTP request line, leading to possible detection bypass for ‘http_uri’ and to incomplete logging of the URI. Upgrading is recommended.

This update can be installed with the "yum" update program. Use
su -c 'yum update suricata' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
package-announce mailing list
Neue Nachrichten