[SECURITY] Fedora 22 Update: suricata-2.0.7-1.fc22

Fri Mar 13 16:55:52 UTC 2015

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2015-2790
2015-02-27 19:27:40
--------------------------------------------------------------------------------

Name        : suricata
Product     : Fedora 22
Version     : 2.0.7
Release     : 1.fc22
URL         : http://suricata-ids.org/
Summary     : Intrusion Detection System
Description :
The Suricata Engine is an Open Source Next Generation Intrusion
Detection and Prevention Engine. This engine is not intended to
just replace or emulate the existing tools in the industry, but
will bring new ideas and technologies to the field. This new Engine
supports Multi-threading, Automatic Protocol Detection (IP, TCP,
UDP, ICMP, HTTP, TLS, FTP and SMB! ), Gzip Decompression, Fast IP
Matching, and GeoIP identification.

--------------------------------------------------------------------------------
Update Information:

This release fixes a parsing issue in the DCERPC parser that can happen when Suricata runs out of memory. The exact scope of the problem isn’t clear, but it could certainly lead to crashes. CVE-2015-0928 is assigned for this. The second issue is certain characters in the URI could confuse the parsing of the HTTP request line, leading to possible detection bypass for ‘http_uri’ and to incomplete logging of the URI. Upgrading is recommended.
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use
su -c 'yum update suricata' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------