Fedora 27: 2018-ee417c4b28 Critical: Suricata HTTP Detection Bypass

The Suricata Engine is an Open Source Next Generation Intrusion

Detection and Prevention Engine. This engine is not intended to

just replace or emulate the existing tools in the industry, but

will bring new ideas and technologies to the field. This new Engine

supports Multi-threading, Automatic Protocol Detection (IP, TCP,

UDP, ICMP, HTTP, TLS, FTP and SMB! ), Gzip Decompression, Fast IP

Matching, and GeoIP identification.

fixes bz#1543250 and bz#1543251

[ 1 ] Bug #1543250 - CVE-2018-6794 suricata: HTTP detection bypass in detect.c and stream-tcp.c [fedora-all]

https://bugzilla.redhat.com/show_bug.cgi?id=1543250

[ 2 ] Bug #1543251 - CVE-2018-6794 suricata: HTTP detection bypass in detect.c and stream-tcp.c [epel-all]

https://bugzilla.redhat.com/show_bug.cgi?id=1543251

su -c 'dnf upgrade suricata' at the command line.

For more information, refer to the dnf documentation available at

https://dnf.readthedocs.io/en/latest/command_ref.html

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

https://fedoraproject.org/security/

package-announce mailing list -- package-announce@lists.fedoraproject.org

To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org