HomeSolus

Update suricata to 4.1.3

Authored by kyrios123 on Mar 10 2019, 9:53 AM.

Description

Update suricata to 4.1.3

Summary:

  • when stats info dumping in redis,the decoder.ipv4.trunc_pkt can’t output.In the same time, in the stats.log this can output
  • rule reload with workers mode and NFQUEUE not working stable
  • Include ebpf files in distributed sources
  • SSLv3 – AddressSanitizer heap-buffer-overflow
  • TCP FIN/ACK, RST/ACK in HTTP – detection bypass
  • afpacket doesn’t wait for all capture threads to start
  • dns v1/2 with rust results in less app layer data available in the alert record (for dns related alerts/rules) (4.1.x)
  • netmap/afpacket IPS: stream.inline: auto broken
  • configure.ac: broken –{enable,disable}-xxx options (4.1.x)
  • IPS mode crash under load
  • pcre related FP in HTTP inspection (4.1.x)
  • Suricata rule sid:2224005 SURICATA IKEv2 weak cryptographic parameters (Diffie-Hellman) not works (4.1.x)

Signed-off-by: Pierre-Yves <pyu@riseup.net>

Test Plan: Successfully executed sudo suricata -c /etc/suricata/suricata.yaml -i enp0s3

Reviewers: Triage Team, JoshStrobl

Reviewed By: Triage Team, JoshStrobl

Differential Revision: https://dev.getsol.us/D5693

Details

Committed
kyrios123Mar 11 2019, 7:18 PM
Pushed
kyrios123Mar 11 2019, 7:18 PM
Reviewer
Triage Team
Differential Revision
D5693: Update suricata to 4.1.3
Parents
R2980:a57f7df4fa67: Update suricata to 4.1.2
Branches
Unknown
Tags
Unknown
References
tag: suricata-4.1.3-18