Advisories » MGASA-2015-0135

Updated suricata packages fix security vulnerabilities

Publication date: 09 Apr 2015
Modification date: 09 Apr 2015
Type: security
Affected Mageia releases : 4

Description

Updated suricata packages fix security vulnerability:

It was reported that libhtp handling of streams in error state could lead to
NULL pointer dereference, leading to caller crash. Suricata (Intrusion
Detection System) embeds libhtp, and is one of the affected components.
                

References

• https://bugs.mageia.org/show_bug.cgi?id=15086
• https://github.com/OISF/libhtp/pull/82
• https://redmine.openinfosecfoundation.org/issues/1272
• https://lists.fedoraproject.org/pipermail/package-announce/2015-January/148322.html

SRPMS

4/core

• suricata-1.4.7-1.1.mga4