-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Package: suricata Version: 2.0.3-1 Severity: important Tags: security, fixed-upstream
Hi, It was found out that the application parser for SSH integrated in Suricata contains a flaw that might lead to an out-of-bounds access. For this reason a Denial of Service towards the Suricata monitoring software might be possible using crafted packets on the monitoring interface. More information: http://seclists.org/fulldisclosure/2014/Sep/79 http://suricata-ids.org/2014/09/23/suricata-2-0-4-available/ Feel free to contact me in case you need any help regarding this issue. - --- Henri Salo -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) iEYEARECAAYFAlQkJMMACgkQXf6hBi6kbk+bIQCgom59SVZDOvoc9gcNCJJCMgV+ noYAnizbzeHzLPFWkGt8QGm/XiMYwZ3/ =1ooE -----END PGP SIGNATURE----- -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org