Suricata is een opensource netwerk Intrusion Detections System (IDS), Intrusion Prevention System (IPS) en Network Security Monitoring-engine. De onwikkeling wordt overzien door de Open Information Security Foundation, met hulp van de community en diverse fabrikanten. Afgelopen donderdag is versie 1.3.5 uitgebracht en hierin is onder meer een belangrijk geheugenlek gedicht. De volledige release notes kunnen hieronder worden gevonden.
Suricata 1.3.5 Available!
The OISF development team is pleased to announce Suricata 1.3.5. This a maintenance release of Suricata 1.3 with some important fixes. Because of the fixes below, upgrading is highly recommended.
FixesKnown issues & missing features
- Flow engine memory leak fixed by Ludovico Cavedon (#651)
- Unified2 would overwrite files if file rotation happened within a second of file creation, leading to loss of events/alerts (#664)
- Flow manager mutex used unintialized, fixed by Ludovico Cavedon (#654)
- Windows building in CYGWIN fixed (#630)
There is talk about a possible IPv6 evasion, but since no details are available this isn’t addressed yet. Due to the nature of the fixes above, we decided to release anyway. Once we get details on the evasion, we’ll push out another update.