Debian Package Tracker

From: Hugo Lefeuvre <hle@debian.org>
To: <dispatch@tracker.debian.org> , <debian-lts-changes@lists.debian.org>
Subject: Accepted suricata 2.0.7-2+deb8u4 (source amd64) into oldstable
Date: Mon, 08 Apr 2019 13:10:11 +0000

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Mon, 08 Apr 2019 13:17:04 +0200
Source: suricata
Binary: suricata
Architecture: source amd64
Version: 2.0.7-2+deb8u4
Distribution: jessie-security
Urgency: high
Maintainer: Pierre Chifflier <pollux@debian.org>
Changed-By: Hugo Lefeuvre <hle@debian.org>
Description:
 suricata   - Next Generation Intrusion Detection and Prevention Tool
Changes:
 suricata (2.0.7-2+deb8u4) jessie-security; urgency=high
 .
   * Non-maintainer upload by the LTS Team.
   * CVE-2018-10243: heap-based buffer over-read in
     htp_parse_authorization_digest via an authorization digest header.
   * CVE-2018-10242: incorrect parsing of SSH banner (missing length check)
     resulting in oob read in parsing code.
Checksums-Sha1:
 ca500d5d91cbc9e781b7d15c7eef77ca24523e91 1791 suricata_2.0.7-2+deb8u4.dsc
 4dc527315280a0a15e71ffbc67f60a983f489e31 2953232 suricata_2.0.7.orig.tar.gz
 4140a201c3ccca9c813a24d2c1525c8f3b73fff3 15372 suricata_2.0.7-2+deb8u4.debian.tar.xz
 5f3175c86a3e41b374f1071393716f20ca7bbc00 774630 suricata_2.0.7-2+deb8u4_amd64.deb
Checksums-Sha256:
 518bbe0e703ee0a0330e4ced211b714d24580fd9c9be6fccc435300e83cc0145 1791 suricata_2.0.7-2+deb8u4.dsc
 973e3311281cee5f776279f36eda7e37c266a8661a5f5746b3531c3ccd8af6a9 2953232 suricata_2.0.7.orig.tar.gz
 b48c648d4e2bebfb94c81972599e1934101f635d14e3c9648fe0d2448ce394e1 15372 suricata_2.0.7-2+deb8u4.debian.tar.xz
 5014edf0643f66f8d933416c1685828748c687d4f74afdf079ee25dad2efd9ba 774630 suricata_2.0.7-2+deb8u4_amd64.deb
Files:
 192ea8a62efd2d02191c77a242eedb93 1791 net optional suricata_2.0.7-2+deb8u4.dsc
 18651aac081c817cd8c67cbf11fdb8c6 2953232 net optional suricata_2.0.7.orig.tar.gz
 857146f0135fc61b6296bb18e603dbd5 15372 net optional suricata_2.0.7-2+deb8u4.debian.tar.xz
 9e9908de41bbf8aa22485ca689d84e8d 774630 net optional suricata_2.0.7-2+deb8u4_amd64.deb

-----BEGIN PGP SIGNATURE-----

iQEzBAEBCgAdFiEEUFZhdgIWqBhwqCvuZYVUZx9w0DQFAlyrN7IACgkQZYVUZx9w
0DRlDAgAnZxp3alN51V0b7H+6OCOG3saPTPTcG55dZGLWBs4QZc7o01OX+9pMJrC
pbwwIERrZ197LYCRgg0Elh3opLkIQqNAR29YfYGcSC7erX3Pe9DROFQrNTqkHTTn
f7mn6y6i0QVHbGm0iQUv62n978JbdEmuGeZJhNiQWRpq0vSsUCRl3tSTIvQReX9N
x6ZwHVV/0r1gn1bZy69pknbdzvYvpVsDvxv6pLn5x+D76MrsKBoN2wjKCHky0LZm
Dr175NKN12JM6Nk5B4OMcY7HVDAD7eZj+iAgSuA9AymijWheYBKDUFZq6RAIzUmE
CZLb+WG62c+3LjqWlZi+KPt3ve7A7A==
=FNN1
-----END PGP SIGNATURE-----

News for package suricata