Binary package hint: snort
snort (2.7.0-26) unstable; urgency=low
.
* Fix bug in snort-pgsql and snort-mysql's configuration script introduced in
the previous upload. They were using the wrong debconf keys which made
maintainer scripts fail. (Closes: #526915)
.
snort (2.7.0-25) unstable; urgency=low
.
* Use src/output-plugins/spo_database.c from the 2.8.4.1 release. This
version includes the necessary code to configure the mysql connection so
that it reconnects to the database in case the connection gets lost. This
might happen if too few events are logged in Snort and the database
connection timeouts. (Closes: #449568)
* Copy over src/ipv6_port.h from 2.8.4.1 and include it in
src/output-plugins/spo_database.c
* Update Japanese translation for the templates, thanks to Hideki Yamane
(Closes: 510704)
* Move the code that detects if interfaces are down over to snort-pgsql and
snort-mysql. This way, if the interface defined is not available it will
prompt again, raising the debconf priority (Closes: #502084)
* Change all the config_parameters debconf input from 'medium' to 'error'
* Change all the needs_db_config debconf questions from 'medium' to 'high'
since users that do not see this note will end up with a non-functioning
package.
.
snort (2.7.0-24) unstable; urgency=low
.
* Remove the LogMessage associated with fragmented traffic since it shows up
even in systems that do not have ttl_limit set.
.
snort (2.7.0-23) unstable; urgency=high
.
* Fix error in call to LogMessage (missing parameters) which caused a segfault
when fragmented packages were received and ttl_limit was set. This bug was
introduced in the patch to fix CVE-2008-1804. Urgency set to 'high' as in
some circunstances it makes Snort fail to start on startup or die after
working for only a few minutes. Also, this could be used as a DoS attack
against an IDS sensor rendering it useless.(Closes: 503992)
Attaching debdiff, hope it is good.