--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2009-10751
2009-10-27 05:00:33
--------------------------------------------------------------------------------

Name        : snort
Product     : Fedora 10
Version     : 2.8.5.1
Release     : 1.fc10
URL         : https://www.snort.org/
Summary     : Intrusion detection system
Description :
Snort is a libpcap-based packet sniffer/logger which
can be used as a lightweight network intrusion detection system.
It features rules based logging and can perform protocol analysis,
content searching/matching and can be used to detect a variety of
attacks and probes, such as buffer overflows, stealth port scans,
CGI attacks, SMB probes, OS fingerprinting attempts, and much more.
Snort has a real-time alerting capabilty, with alerts being sent to syslog,
a separate "alert" file, or as a WinPopup message via Samba's smbclient

Edit /etc/snort.conf to configure snort and use snort.d to start snort

This rpm is different from previous rpms and while it will not clobber
your current snortd file, you will need to modify it.

There are 9 different packages available

All of them require the base snort rpm.  Additionally, you will need
to chose a binary to install.

/usr/sbin/snort should end up being a symlink to a binary in one of
the following configurations:

plain      plain+flexresp
mysql      mysql+flexresp
postgresql postgresql+flexresp
snmp       snmp+flexresp
bloat      mysql+postgresql+flexresp+snmp

Please see the documentation in /usr/share/doc/snort-2.8.5.1

There are no rules in this package  the license  they are released under forbids
us from repackaging them  and redistributing them.

--------------------------------------------------------------------------------
Update Information:

Update to 2.8.5.1 which includes a fix for CVE-2009-3641 DoS (crash) while
printing specially-crafted IPv6 packet using the -v option
--------------------------------------------------------------------------------
ChangeLog:

* Sun Oct 25 2009 Dennis Gilmore  - 2.8.5.1-1
- update for CVE-2009-3641
* Sun Jul 26 2009 Fedora Release Engineering  - 2.8.3.2-4
- Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild
* Sun Apr 19 2009 Robert Scheck  - 2.8.3.2-3
- Build require package libnet10-devel rather libnet10
* Wed Feb 25 2009 Fedora Release Engineering  - 2.8.3.2-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_11_Mass_Rebuild
* Mon Feb 16 2009 Dennis Gilmore  - 2.8.3.2-1
- update to 2.8.3.2
* Fri Jan 23 2009 Dennis Gilmore  - 2.8.1-6
- rebuild for new mysql
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #530863 - CVE-2009-3641 Snort: DoS (crash) while printing specially-crafted IPv6 packet using the -v option
        https://bugzilla.redhat.com/show_bug.cgi?id=530863
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use 
su -c 'yum update snort' at the command line.
For more information, refer to "Managing Software with yum",
available at .

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/security/
--------------------------------------------------------------------------------

_______________________________________________
Fedora-package-announce mailing list
Fedora-package-announce@redhat.com
http://www.redhat.com/mailman/listinfo/fedora-package-announce

Fedora 10: snort Security Update

November 24, 2009
Update to 2.8.5.1 which includes a fix for CVE-2009-3641 DoS (crash) while printing specially-crafted IPv6 packet using the -v option

Summary

Snort is a libpcap-based packet sniffer/logger which

can be used as a lightweight network intrusion detection system.

It features rules based logging and can perform protocol analysis,

content searching/matching and can be used to detect a variety of

attacks and probes, such as buffer overflows, stealth port scans,

CGI attacks, SMB probes, OS fingerprinting attempts, and much more.

Snort has a real-time alerting capabilty, with alerts being sent to syslog,

a separate "alert" file, or as a WinPopup message via Samba's smbclient

Edit /etc/snort.conf to configure snort and use snort.d to start snort

This rpm is different from previous rpms and while it will not clobber

your current snortd file, you will need to modify it.

There are 9 different packages available

All of them require the base snort rpm. Additionally, you will need

to chose a binary to install.

/usr/sbin/snort should end up being a symlink to a binary in one of

the following configurations:

plain plain+flexresp

mysql mysql+flexresp

postgresql postgresql+flexresp

snmp snmp+flexresp

bloat mysql+postgresql+flexresp+snmp

Please see the documentation in /usr/share/doc/snort-2.8.5.1

There are no rules in this package the license they are released under forbids

us from repackaging them and redistributing them.

Update Information:

Update to 2.8.5.1 which includes a fix for CVE-2009-3641 DoS (crash) while printing specially-crafted IPv6 packet using the -v option

Change Log

* Sun Oct 25 2009 Dennis Gilmore - 2.8.5.1-1 - update for CVE-2009-3641 * Sun Jul 26 2009 Fedora Release Engineering - 2.8.3.2-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild * Sun Apr 19 2009 Robert Scheck - 2.8.3.2-3 - Build require package libnet10-devel rather libnet10 * Wed Feb 25 2009 Fedora Release Engineering - 2.8.3.2-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_11_Mass_Rebuild * Mon Feb 16 2009 Dennis Gilmore - 2.8.3.2-1 - update to 2.8.3.2 * Fri Jan 23 2009 Dennis Gilmore - 2.8.1-6 - rebuild for new mysql

References

[ 1 ] Bug #530863 - CVE-2009-3641 Snort: DoS (crash) while printing specially-crafted IPv6 packet using the -v option https://bugzilla.redhat.com/show_bug.cgi?id=530863

Update Instructions

This update can be installed with the "yum" update program. Use su -c 'yum update snort' at the command line. For more information, refer to "Managing Software with yum", available at .

Severity
Name : snort
Product : Fedora 10
Version : 2.8.5.1
Release : 1.fc10
URL : https://www.snort.org/
Summary : Intrusion detection system

Related News

23.Tablet Connections Esm H320
2 - 3 min read
The release of Ubuntu 24.04 LTS , also known as Noble Numbat, brings various security enhancements and exciting new features . These improvements
4.Lock AbstractDigital Esm H320
2 - 3 min read
Tails 6.2 is a new Linux distribution release that expands its multilingual support and improves security features. The distribution is a
19.Laptop Bed Esm H320
2 - 3 min read
AlmaLinux 9.4 beta has been released and provides compelling reasons to consider it for desktop usage. While AlmaLinux is primarily known as a
32.Lock Code Circular Esm H320
2 - 3 min read
Linux admins and security practitioners face significant challenges in keeping their Linux systems secure amidst the constant threat of kernel bugs.
1.Penguin Landscape Esm H320
2 - 3 min read
A significant security threat, known as the Spectre v2 exploit, has been observed targeting Linux systems running on modern Intel processors. Let's
10.FingerPrint Locks Esm H320
2 - 3 min read
The recent release of I2P 2.5.0 , an anonymous P2P network that protects against online censorship, surveillance, and monitoring, has brought a slew
24.Key Code Esm H320
2 - 3 min read
The Akira ransomware group has extorted approximately $42 million from over 250 victims since January 1, 2024. The group initially focused on
5.ShakingHands Esm H320
2 - 3 min read
At The Linux Foundation's Open Source Summit North America , Linus Torvalds, the creator of Linux, discussed various topics related to Linux
Sign Up

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved