Changelog for
snort-2.9.19-1.fc35.x86_64.rpm :
* Wed Dec 01 2021 Lawrence R. Rogers
2.9.19.0-1- Release 2.9.19.0-1 https://blog.snort.org/2021/12/open-source-version-of-snort-29190.html
* src/snort.c : Fixed an issue where verdict will be applied onto next session when timeout occurs in some scenarios.
* rc/file-process/file_service.c : Removed an excessively flooding log.
* src/dynamic-preprocessors/modbus/modbus_decode.c : Fixed possible integer overflow.
* src/fpcreate.c : Added fix to GCC compiled snort to use AC-BNFA-Q search-method when Intel-cpm is enabled.
* src/generators.h src/preprocessors/Stream6/snort_stream_tcp.c : Added fix to not to drop packets when window size is 0 by TCP normalizer and Added new alert with GID 129 and SID 21 when such packets are seen.
* src/dynamic-preprocessors/appid/detector_plugins/detector_imap.c src/dynamic-preprocessors/appid/detector_plugins/detector_pop3.c : Added support for Appid to detect login success and failure for IMAP and POP3 protocols.
* src/dynamic-preprocessors/reputation/reputation_config.c src/dynamic-preprocessors/reputation/spp_reputation.c src/dynamic-preprocessors/reputation/spp_reputation.h src/pkt_tracer.c src/snort.c src/util.c : Fixed terminology to be bias-free in log/error messages.
* src/snort.c : Fixed a potential race condition.
* Tue Aug 17 2021 Lawrence R. Rogers 2.9.18.1-1- Release 2.9.18.1-1
* snort/src/dynamic-preprocessors/dcerpc2/dce2_smb.c: Fixed possible memory corruption in SMB preprocessor.
* Tue Jun 15 2021 Lawrence R. Rogers 2.9.18-1- Release 2.9.18-1
* src/file-process/file_service.c, src/generators.h, src/preprocessors/HttpInspect/event_output/hi_eo_log.c, src/preprocessors/HttpInspect/include/hi_eo_events.h, src/preprocessors/HttpInspect/server/hi_server.c, src/preprocessors/snort_httpinspect.c, src/preprocessors/snort_httpinspect.h : Added range field support in HTTP preprocessor.
* src/preprocessors/HttpInspect/client/hi_client.c : Added alert for http chunk size mismatch.
* src/detection-plugins/detection_leaf_node.c : Fixed a condition in which alert would not be generated.
* src/dynamic-preprocessors/appid/service_plugins/service_snmp.c : Added support to detect snmp \'report pdu\'.
* src/dynamic-preprocessors/dcerpc2/dce2_paf.c, src/dynamic-preprocessors/dcerpc2/dce2_smb.h : Fixed possible memory corruption in smb preprocessor.
* src/preprocessors/Stream6/snort_stream_icmp.c, src/preprocessors/Stream6/stream_common.h, src/preprocessors/spp_stream6.c : Fixed handling ICMP error code -4.
* src/dynamic-preprocessors/dcerpc2/dce2_memory.c, src/dynamic-preprocessors/dcerpc2/spp_dce2.c, src/memory_stats.c : Added additional stats for SMB preprocessor.
* src/dynamic-preprocessors/appid/appInfoTable.c : Fixed an error when debugmsgs option enabled in compilation.
* Fri Mar 19 2021 Lawrence R. Rogers 2.9.17.1-1- Release 2.9.17.1-1
* src/preprocessors/Stream6/snort_stream_tcp.c : Fixed wrong reference to configuration during reload.
* src/dynamic-preprocessors/appid/fw_appid.c : Fixed possible memleak in appid.
* src/detect.c, src/preprocessors/snort_httpinspect.c : Fixed a race-condition in http preproc and IPS.
* configure.in : Fixed compilation issues when intel-soft-cpm is enabled.
* src/preprocessors/Stream6/snort_stream_tcp.c, src/preprocessors/Stream6/stream_common.h, src/preprocessors/spp_stream6.c : Fixed a race-condition in stream preproc.
* Thu Dec 17 2020 Lawrence R. Rogers 2.9.17.0-2- Release 2.9.17.0-2 Added symlinks where:
* /usr/lib64/snort_dynamicpreprocessor points to /usr/lib64/snort-2.9.19_dynamicpreprocessor
* /usr/lib64/snort_dynamicengin points to /usr/lib64/snort-2.9.19_dynamicengin And the distributed snort.conf file uses the generic name instead of the version-specific name.
* Fri Oct 30 2020 Lawrence R. Rogers 2.9.17.0-1- Release 2.9.17.0-1 New Additions Added support for s7Commplus protocol. Support for allowing common names across rule options. Added support to detect TCP Fast Open packets. Improvements / Fix Added support for HTTP range field parsing to detect if HTTP response/request is indeed partial or full content. Fixed TCP segment queue hole issue as per the RFC793 recommendation for OOO Ack packet handling. Fixed multiple static analysis issues. Miscellaneous SMB bug fixes.
* Mon Aug 24 2020 Lawrence R. Rogers 2.9.16.1-2- Release 2.9.16.1-2 Version 2.9.16.1 enables OpenAppID by default and it needs to be explicitly disabled.
* Fri Jul 24 2020 Lawrence R. Rogers 2.9.16.1-1- Release 2.9.16.1-1 New Additions Added support for GCC version 10.1.1. Improvements / Fix Added packet counters to make sure flows with one-way data don\'t pend forever. Fixed potential race condition between reload and exit path.
* Mon Apr 13 2020 Lawrence R. Rogers 2.9.16-1- Release 2.9.16-1 New Additions Added support for early inspection of HTTP payload before flushing in pre-ack mode. This feature can be enabled using fast_blocking in http inspect configuration. Added 64-bit support for Windows 10 operating system. Added support for glibc version 2.30. Improvements and fixes Fixed file policy not working with character prefix in chunk size. Updated the file magic to detect ALZ file types. Addressed an issue when out-of-order FIN is received by dropping it. Normalize randomly encoded nulls interspersed in the HTTP server response to UTF-8.
* Fri Mar 27 2020 Lawrence R. Rogers 2.9.15.1-2- Release 2.9.15.1-2 Added PF_Ring support for CentOS/RHEL 8.
* Sun Dec 15 2019 Lawrence R. Rogers 2.9.15.1-1- Release 2.9.15.1-1 New Additions Added support for glibc version 2.30. Improvements / Fix Fixed snort core seen during ssl re-configuration. Fixed file access issues on files from SMB share.