Alerts This Week
Warning Icon 1 727
Alerts This Week
Warning Icon 1 727

Fedora: 2015-7730 Critical: Suricata SSL/TLS Decoder Crash

fedora
Calendar Grey May 26, 2015
Dist Fedora Esm H88
Suricata has released a crucial update addressing vulnerabilities in the DER parser that could cause failures in SSL/TLS certificate processing. Upgrade today.
This update fixes a bug in the DER parser which is used to decode SSL/TLS certificates could crash Suricata

Summary

The Suricata Engine is an Open Source Next Generation Intrusion

Detection and Prevention Engine. This engine is not intended to

just replace or emulate the existing tools in the industry, but

will bring new ideas and technologies to the field. This new Engine

supports Multi-threading, Automatic Protocol Detection (IP, TCP,

UDP, ICMP, HTTP, TLS, FTP and SMB! ), Gzip Decompression, Fast IP

Matching, and GeoIP identification.

Update Information:

This update fixes a bug in the DER parser which is used to decode SSL/TLS certificates could crash Suricata. Also, those processing large numbers of (untrusted) pcap files need to update as a malformed pcap could crash Suricata.

Topics%20covered

Topics Covered

security advisory critical Fedora crash SSL/TLS suricata pcap

Change Log

* Wed May 6 2015 Steve Grubb 2.0.8-1 - New upstream security bug fix release

References

Fedora Update Notification FEDORA-2015-7730 2015-05-10 03:57:04
Name : suricata Product : Fedora 22 Version : 2.0.8 Release : 1.fc22 URL : Summary : Intrusion Detection System Description : The Suricata Engine is an Open Source Next Generation Intrusion Detection and Prevention Engine. This engine is not intended to just replace or emulate the existing tools in the industry, but will bring new ideas and technologies to the field. This new Engine supports Multi-threading, Automatic Protocol Detection (IP, TCP, UDP, ICMP, HTTP, TLS, FTP and SMB! ), Gzip Decompression, Fast IP Matching, and GeoIP identification.

Update Instructions

This update can be installed with the "yum" update program. Use su -c 'yum update suricata' at the command line. For more information, refer to "Managing Software with yum", available at .

Severity
critical
Lowest
Low
Medium
High
Critical

Name: suricata
Product: Fedora 22
Version: 2.0.8
Release: 1.fc22
URL:
Summary: Intrusion Detection System

Topics%20covered

Topics Covered

security advisory critical Fedora crash SSL/TLS suricata pcap

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here