We are pleased to announce Suricata 3.2.3. This release fixes a fairly small number of issues. The most important one is an issue we found using AFL in the DER/ASN1 parser. This has the potential to crash your Suricata instance.
Changes
- Bug #2089: engine file logging race condition (3.2.x)
- Bug #2173: openbsd: pcap with raw datalink not supported (3.2.x)
- Bug #2178: asn1/der: stack overflow (3.2.x)
- Bug #2179: Possible confusion or bypass within the stream engine with retransmits. (3.2.x)
- Bug #2183: gcc 7.1.1 ‘format truncation’ compiler warnings (3.2.x)
Download
https://www.openinfosecfoundation.org/download/suricata-3.2.3.tar.gz
Special thanks
AFL project
Trainings
- Developer Training in Cork, Ireland. September 11 to 15: https://www.eventbrite.com/e/5-day-suricata-developer-training-ireland-tickets-33676049972 Hosted by FireEye.
- User Training at SuriCon 2017, in Prague: https://www.eventbrite.com/e/2-day-suricata-training-suricon-2017-tickets-32303327121
SuriCon 2017
Come meet the Suricata community and development team to discuss all things Suricata at the third edition of the annual Suricata Conference. SuriCon 2017 will be in November in Prague: https://suricon.net
About Suricata
Suricata is a high performance Network Threat Detection, IDS, IPS and Network Security Monitoring engine. Open Source and owned by a community run non-profit foundation, the Open Information Security Foundation (OISF). Suricata is developed by the OISF, its supporting vendors and the community.