+6.0.3 -- 2021-06-30
+
+Security #4420: Heap-use-after-free READ 8 ยท JsonDNP3LoggerToClient
+Security #4455: Buffer overread in SMTP SMTPParseCommandBDAT
+Security #4458: Rust panic in suricata::dcerpc::detect::handle_input_data (buffer overread)
+Security #4483: heap-buffer-overflow WRITE in InspectionBufferSetup with use of InspectionBufferGetMulti
+Security #4512: Evasion possibility on wrong/unexpected ACK value in crafted SYN packets
+Feature #4489: decode: add VNTAG decoder (6.0.x)
+Feature #4501: http2: body compression handling (6.0.x)
+Bug #4405: 6.0.x: eve/mqtt: mqtt logging crashes when eve is multithreaded
+Bug #4411: eve.drop: alerts option logs lowest priority alert
+Bug #4413: segv in ApplyToU8Hash
+Bug #4415: threshold: slow startup on threshold.config with many addresses in suppression
+Bug #4416: apparent 1000 character limit in threshold.conf IP lists
+Bug #4417: Panic in Rust HTTP2 dynamic headers table eviction
+Bug #4419: detect: "drop" on protocol detect only rule doesn't drop flow
+Bug #4423: Applayer Mismatch protocol both directions for kerberos AS-REQ/KDC_ERR_PREAUTH_REQUIRED exchange
+Bug #4441: 6.0.x: dns: high resource usage on long lived dns connections
+Bug #4443: 6.0.x: build: Build failure on FreeBSD
+Bug #4450: Properly set the ICMP emergency-bypassed value
+Bug #4452: ipv6 & ftp & passive mode & error
+Bug #4453: Null-dereference in HTTP2MimicHttp1Request in midstream
+Bug #4459: threaded eve: files not closed on deinitialization
+Bug #4461: ftp: Memory leak with duplicate FTP expectation
+Bug #4463: Incorrect AppLayerResult::incomplete for RDP
+Bug #4465: ftp: "g_expectation_data_id" and "g_expectation_id" in AppLayerExpectationHandle function
+Bug #4470: SC_ERROR_CONF_YAML_ERROR anomaly logger error when in socket mode
+Bug #4471: Duplicate alert record in eve log when using unix-socket mode
+Bug #4484: Infinite loops in when using InspectionBufferMultipleForList
+Bug #4487: Timeout in ftp parsing rs_ftp_active_eprt
+Bug #4510: Incorrect flags in Rust
+Bug #4518: Buffer overflow in "by_rule" threshold context
+Bug #4531: segv with --set cmdline option if incorrect key is provided
+Bug #4535: Timeout in ikev2 parsing
+Bug #4538: modbus: Memory leak in signature parsing with pcre
+Bug #4545: SWF decompression overread
+
6.0.2 -- 2021-03-02
Bug #4209: Suricata crashes with multi-threaded eve logger and HTTP/2 traffic
- AC_INIT([suricata],[6.0.3-dev])
+ AC_INIT([suricata],[6.0.3])
m4_ifndef([AM_SILENT_RULES], [m4_define([AM_SILENT_RULES],[])])AM_SILENT_RULES([yes])
AC_CONFIG_HEADERS([src/autoconf.h])
AC_CONFIG_SRCDIR([src/suricata.c])
echo
exit 1
fi
- PKG_CHECK_MODULES(LIBHTPMINVERSION, [htp >= 0.5.37],[libhtp_minver_found="yes"],[libhtp_minver_found="no"])
+ PKG_CHECK_MODULES(LIBHTPMINVERSION, [htp >= 0.5.38],[libhtp_minver_found="yes"],[libhtp_minver_found="no"])
if test "$libhtp_minver_found" = "no"; then
PKG_CHECK_MODULES(LIBHTPDEVVERSION, [htp = 0.5.X],[libhtp_devver_found="yes"],[libhtp_devver_found="no"])
if test "$libhtp_devver_found" = "no"; then
echo
- echo " ERROR! libhtp was found but it is neither >= 0.5.37, nor the dev 0.5.X"
+ echo " ERROR! libhtp was found but it is neither >= 0.5.38, nor the dev 0.5.X"
echo
exit 1
fi
projects / thirdparty / suricata.git / commitdiff
