[Oisf-users] Suricata 4.1.3 released

Victor Julien victor at inliniac.net
Thu Mar 7 14:07:56 UTC 2019

We're pleased to announce *Suricata 4.1.3*. This release fixes a number
of issues found 4.1.

Get the release here:


Bug #2225: when stats info dumping in redis,the decoder.ipv4.trunc_pkt
can't output.In the same time, in the stats.log this can output
Bug #2362: rule reload with workers mode and NFQUEUE not working stable
Bug #2761: Include ebpf files in distributed sources
Bug #2762: SSLv3 - AddressSanitizer heap-buffer-overflow
Bug #2770: TCP FIN/ACK, RST/ACK in HTTP - detection bypass
Bug #2788: afpacket doesn't wait for all capture threads to start
Bug #2805: dns v1/2 with rust results in less app layer data available
in the alert record (for dns related alerts/rules) (4.1.x)
Bug #2811: netmap/afpacket IPS: stream.inline: auto broken
Bug #2823: configure.ac: broken --{enable,disable}-xxx options (4.1.x)
Bug #2842: IPS mode crash under load
Bug #2855: Suricata does not bridge host <-> hw rings (Affects FreeBSD
11-STABLE, FreeBSD 12 and FreeBSD 13-CURRENT)
Bug #2862: pcre related FP in HTTP inspection (4.1.x)
Bug #2865: Suricata rule sid:2224005 SURICATA IKEv2 weak cryptographic
parameters (Diffie-Hellman) not works (4.1.x)
Feature #2774: pcap multi dev support for Windows

*Special thanks*

Edwin van Vliet, Mats Klepsland, Pierre Chifflier, Alexander Gozman,
Fabrice Fontaine, Jingyu Yang, Murat Balaban, Pascal Delalande


2019 Training Calendar has been posted. There are still seats available
for next weeks Advanced Deployment and Threat Hunting training in
Washington, D.C. See https://suricata-ids.org/training/


Suricon 2018 was a great success and the 2019 location has been
announced: Amsterdam. Please consider becoming a sponsor!

*About Suricata*

Suricata is a high performance Network Threat Detection, IDS, IPS and
Network Security Monitoring engine. Open source and owned by a community
run non-profit foundation, the Open Information Security Foundation
(OISF). Suricata is developed by OISF, its supporting vendors and the
Victor Julien
PGP: http://www.inliniac.net/victorjulien.asc

More information about the Oisf-users mailing list