non port: security/suricata/distinfo |
Number of commits found: 58 |
Friday, 29 Mar 2024
|
17:52 Fernando Apesteguía (fernape) Author: Franco Fichtner
security/suricata: update to 7.0.4
ChangeLog: https://suricata.io/2024/03/19/suricata-7-0-4-and-6-0-17-released/
CVEs have been RESERVED but no details have been provided yet.
PR: 277880
Reported by: franco@opnsense.org
Security: CVE-2024-28870 CVE-2024-28871
1b0ccb9 |
Friday, 23 Feb 2024
|
19:08 Fernando Apesteguía (fernape) Author: Franco Fichtner
security/suricata: update to 7.0.3
ChangeLog: https://suricata.io/2024/02/08/suricata-7-0-3-and-6-0-16-released/
PR: 277025
Reported by: franco@opnsense.org (maintainer)
MFH: 2024Q1 (security fixes)
Security: CVE-2024-23839 CVE-2024-23836 CVE-2024-23835 CVE-2024-24568
CVE-2024-23837
cc4077f |
Friday, 27 Oct 2023
|
06:32 Robert Clausecker (fuz) Author: Franco Fichtner
security/suricata: update to 7.0.2
Changelog: https://redmine.openinfosecfoundation.org/versions/198
PR: 274668
c01a420 |
Wednesday, 11 Oct 2023
|
06:02 Robert Clausecker (fuz) Author: Franco Fichtner
security/suricata: update to 7.0.1
A bug fix release.
Changelog: https://suricata.io/2023/09/14/suricata-7-0-1-released/
PR: 274371
MFH: 2023Q4
c777a0f |
Sunday, 10 Sep 2023
|
19:17 Nuno Teixeira (eduardo) Author: Franco Fichtner
security/suricata: Update to 7.0.0
* The (broken) Prelude support was removed upstream.
* Netmap API support requires version 14 now. Otherwise it has to be
disabled to build.
* Caveats may still apply as no stable release was published yet.
OPNsense users are reporting instability issues with Netmap compared to
version 6.0.13, but as these things move quite slowly and demand is high
the update shall go in since it is an official release.
ChangeLog: https://suricata.io/2023/07/18/suricata-7-0-0-released/
PR: 267688
62bc0ae |
Monday, 26 Jun 2023
|
22:58 Robert Clausecker (fuz) Author: Franco Fichtner
security/suricata: update to 6.0.13
Changelog: https://suricata.io/2023/06/15/suricata-6-0-13-released/
PR: 272157
df34077 |
Monday, 5 Jun 2023
|
16:53 Robert Clausecker (fuz) Author: Franco Fichtner
security/suricata: update to 6.0.12
Changelog: https://redmine.openinfosecfoundation.org/versions/189
PR: 271840
eb72fc1 |
Thursday, 20 Apr 2023
|
16:31 Fernando Apesteguía (fernape) Author: Franco Fichtner
security/suricata: update to 6.0.11
ChangeLog: https://forum.suricata.io/t/suricata-6-0-11-released/3409
* LibHTP has been updated to 0.5.43. This is a required version that is bundled
with the release.
* Various security, performance, accuracy, and stability issues have been fixed
PR: 270945
Reported by: franco@opnsense.org (maintainer)
9a57766 |
Wednesday, 14 Dec 2022
|
17:36 Fernando Apesteguía (fernape) Author: Franco Fichtner
security/suricata: update to 6.0.9
ChangeLog: https://suricata.io/2022/11/29/suricata-6-0-9-released/
LibHTP has been updated to 0.5.42 and is bundled with the release.
Various security, performance, accuracy and stability issues have been fixed.
PR: 268347
Reported by: franco@opnsense.org (maintainer)
e6c7a0e |
Monday, 3 Oct 2022
|
16:05 Fernando Apesteguía (fernape) Author: Franco Fichtner
security/suricata: update to 6.0.8
ChangeLog: https://suricata.io/2022/09/27/suricata-6-0-7-released/
Suricata 6.0.8 fixes 2 issues in the 6.0.7 distribution:
* libhtp 0.5.41 was not actually included
* Suricata-Update 1.3.0dev0 was included instead of 1.2.5
PR: 266715
Reported by: franco@opnsense.org (maintainer)
MFH: 2022Q4 (bugfix release)
37bdde4 |
Friday, 9 Sep 2022
|
21:56 Gleb Smirnoff (glebius)
security/suricata: use upstream patch for divert(4) socket
Reviewed by: Franco Fichtner <franco opnsense.org> (maintainer)
Approved by: mikael
169f2e1 |
Thursday, 21 Jul 2022
|
15:15 Fernando Apesteguía (fernape) Author: Franco Fichtner
security/suricata: update to 6.0.6
ChangeLog: https://redmine.openinfosecfoundation.org/versions/176
PR: 265331
Reported by: franco@opnsense.org (maintainer)
7ac9d14 |
Saturday, 23 Apr 2022
|
19:33 Neel Chauhan (nc) Author: Franco Fichtner
security/suricata: update to 6.0.5
Changes: https://forum.suricata.io/t/suricata-6-0-5-and-5-0-9-released/2415
PR: 263466
6c203d0 |
Monday, 13 Dec 2021
|
17:08 Dries Michiels (driesm) Author: Franco Fichtner
security/suricata: Update to 6.0.4
While here pet portfmt.
Changes: https://forum.suricata.io/t/suricata-6-0-4-and-5-0-8-released/1942
PR: 260250
Approved by: 0mp (mentor)
MFH: 2021Q4
Differential Revision: https://reviews.freebsd.org/D33335
3571a07 |
Tuesday, 31 Aug 2021
|
20:38 Craig Leres (leres)
security/suricata: Update to 6.0.3
PR: 257603
Approved by: Franco Fichtner (maintainer)
bcdd89f |
Friday, 23 Apr 2021
|
19:53 Neel Chauhan (nc)
security/suricata: update to 6.0.2
Changes: https://redmine.openinfosecfoundation.org/versions/162
PR: 255342
Submitted by: Franco Fichtner <franco AT opnsense DOT org> (maintainer)
68b4bca |
Tuesday, 30 Mar 2021
|
14:13 rhurlin
security/suricata: Update to 5.0.6
Changelog: https://redmine.openinfosecfoundation.org/versions/164
PR: 254579
Submitted by: Franco Fichtner <franco@opnsense.org> (maintainer)
|
Thursday, 7 Jan 2021
|
10:24 kai
security/suricata: Update to 5.0.5 [1]
* Remove the JSON option and convert the relevant parts into fixed
components because devel/jansson has become a mandatory dependency since
the 5.0.0 release. [2]
Changelog:
https://github.com/OISF/suricata/blob/suricata-5.0.5/ChangeLog
PR: 251887
Submitted by: Franco Fichtner <franco@opnsense.org> (maintainer) [1]
Reviewed by: fernape, daniel.engberg.lists@pyret.net
Approved by: maintainer [2]
|
Thursday, 29 Oct 2020
|
10:44 pi
security/suricata: update 5.0.2 -> 5.0.4
PR: 246093
Submitted by: Franco Fichtner <franco@opnsense.org> (maintainer)
Relnotes: https://suricata-ids.org/2020/04/28/suricata-5-0-3-released/
https://suricata-ids.org/2020/10/08/suricata-4-1-9-and-5-0-4-released/
MFH: 2020Q4
|
Monday, 17 Feb 2020
|
18:45 yuri
security/suricata: Update 5.0.1 -> 5.0.2
PR: 244186
Submitted by: Franco Fichtner <franco@opnsense.org> (maintainer)
MFH: 2020Q1 (bugfixes)
|
Wednesday, 25 Dec 2019
|
13:30 amdmi3
- Update to 5.0.1
PR: 242658
Submitted by: franco@opnsense.org (maintainer)
|
Saturday, 2 Nov 2019
|
13:25 tcberner
security/suricata: update to 5.0.0
PR: 241452
Submitted by: Franco Fichtner <franco@opnsense.org> (maintainer)
|
Wednesday, 25 Sep 2019
|
22:09 garga
security/suricata: Update to 4.1.5
PR: 240793
Submitted by: Franco Fichtner <franco@opnsense.org> (maintainer)
MFH: 2019Q3
Security: CVE-2019-16410 CVE-2019-16411
Sponsored by: Rubicon Communications, LLC (Netgate)
|
Friday, 3 May 2019
|
08:40 joneum
Update to 4.1.4
Changelog: https://suricata-ids.org/2019/04/30/suricata-4-1-4-released/
PR: 237684
Submitted by: Franco Fichtner <franco@opnsense.org> (maintainer)
Sponsored by: Netzkommune GmbH
|
Friday, 8 Mar 2019
|
14:35 garga
- Update security/suricata to 4.1.3 [1]
- Add support to python 3.x [2]
PR: 236385
Submitted by: Franco Fichtner <franco@opnsense.org> (maintainer) [1]
garga [2]
Approved by: Franco Fichtner <franco@opnsense.org> (maintainer) [2]
Obtained from: pfSense [2]
Sponsored by: Rubicon Communications, LLC (Netgate) [2]
|
Tuesday, 1 Jan 2019
|
11:17 joneum
Update to 4.1.2
Changelog: https://suricata-ids.org/2018/12/21/suricata-4-1-2-released/
PR: 234271
Submitted by: Franco Fichtner <franco@opnsense.org> (maintainer)
Sponsored by: Netzkommune GmbH
|
Thursday, 20 Dec 2018
|
06:37 joneum
Update to 4.1.1
Changelog: https://suricata-ids.org/2018/12/17/suricata-4-1-1-available/
PR: 234128
Submitted by: Franco Fichtner <franco@opnsense.org> (maintainer)
Sponsored by: Netzkommune GmbH
|
Sunday, 9 Dec 2018
|
01:31 swills
security/suricata: update to 4.1
PR: 231839
Submitted by: Franco Fichtner <franco@opnsense.org> (maintainer)
|
Friday, 9 Nov 2018
|
16:44 swills
security/suricata: update to 4.0.6
PR: 233027
Submitted by: Franco Fichtner <franco@opnsense.org> (maintainer)
|
Monday, 23 Jul 2018
|
15:04 garga
Update security/suricata to 4.0.5
PR: 229904
Approved by: maintainer
MFH: 2018Q3
Security: CVE-2018-10242 CVE-2018-10244
Differential Revision: https://reviews.freebsd.org/D16366
|
Monday, 2 Apr 2018
|
00:01 yuri
security/suricata: Update 4.0.3 -> 4.0.4
Port changes:
* Change to DISTVERSION
* Removed HTP_PORT from defaultoptions
* Add NSS_CONFIGURE_OFF
* Add command silencing
I also noticed that it still links to libjansson when JSON=off.
This is because it auto-finds it.
Requested the upstream to add --disable-{option} flags:
https://redmine.openinfosecfoundation.org/issues/2473
PR: 226512
Submitted by: Franco Fichtner <franco@opnsense.org> (maintainer, original
version)
Submitted by: Renato Botelho <garga@FreeBSD.org> (final version)
Approved by: Franco Fichtner <franco@opnsense.org> (maintainer)
|
Friday, 15 Dec 2017
|
02:05 swills
security/suricata: update to 4.0.3
PR: 224351
Submitted by: Franco Fichtner <franco@opnsense.org> (maintainer)
|
Tuesday, 21 Nov 2017
|
19:12 zeising
Update to 4.0.1
This is a bugfix release.
See https://suricata-ids.org/2017/10/18/suricata-4-0-1-available/ for
complete changelog.
PR: 223322
Submitted by: Franco Fichtner
Approved by: Franco Fichtner (maintainer)
|
Wednesday, 9 Aug 2017
|
08:15 joneum
- security/suricata: Update from 3.2.3 to 4.0.0
- Changelog: https://suricata-ids.org/2017/07/27/suricata-4-0-released/
PR: 221286
Submitted by: Franco Fichtner <franco@opnsense.org> (maintainer)
Approved by: miwi (mentor)
Differential Revision: https://reviews.freebsd.org/D11908
|
Saturday, 22 Jul 2017
|
14:50 joneum
- security/suricata: Update from 3.2.2 to 3.2.3
- Changelog: https://suricata-ids.org/2017/07/13/suricata-3-2-3-available/
PR: 220758
Submitted by: Franco Fichtner <franco@opnsense.org> (maintainer)
Approved by: miwi (mentor)
Differential Revision: https://reviews.freebsd.org/D11639
|
Sunday, 18 Jun 2017
|
15:06 ultima
* Updated to 3.2.2
* Depends on libhtp 0.5.24 or greater
* Listen on multiple PCAP interfaces via RC script
* Dependencies added in the 3.2.1 update move to the PRELUDE option where they
belong
- Support additional runmodes for unix-socket
- make install-full can have race conditions on OSX
- af-packet: faulty VLAN handling in tpacket-v3 mode
- bad checksum 0xffff
- ippair: xbit unset memory leak
- file store: file log / file store mismatch with multiple files
- app-layer: fix memleak on bad traffic
- http body handling: failed assertion
- ippair: pair is direction sensitive
- defrag - overlap issue in linux policy
- unix socket: race condition on start up
PR: 220026
Submitted by: Franco Fichtner <franco@opnsense.org> (maintainer)
Reviewed by: matthew (mentor)
Approved by: matthew (mentor)
Differential Revision: https://reviews.freebsd.org/D11251
|
Saturday, 4 Mar 2017
|
13:33 mat
Update to 3.2.1.
Pass maintainership to submitter.
PR: 217143
Submitted by: Franco Fichtner
Approved by: maintainer timeout
Sponsored by: Absolight
|
Thursday, 20 Oct 2016
|
02:30 koobs
security/suricata: Update to 3.1.2
- Update PORTVERSION and distinfo checksum (3.1.2)
- Update pkg-plist
https://github.com/inliniac/suricata/blob/suricata-3.1.2/ChangeLog
PR: 212815
Submitted by: Franco Fichtner <franco opnsense org>
|
Sunday, 31 Jul 2016
|
14:21 koobs
security/suricata: Update to 3.1.1
* Update PORTVERSION and distinfo checksum (3.1.1) [1]
* Update pkg-plist for shared library bump [2]
* Use postunexec instead of unexec in pkg-plist
* Group common OPTIONS_* entries
* Group *_TARGET entries
https://github.com/inliniac/suricata/blob/suricata-3.1.1/ChangeLog
PR: 210490 [1][2]
Submitted by: Stewart Morgan <stewart.morgan gmail com> [1]
Submitted by: Franco Fichtner <franco opnsense org> [2]
|
Tuesday, 2 Feb 2016
|
16:33 koobs
security/suricata: Update to 3.0
- Switch from DISTVERSION to PORTVERSION
- Update PORTVERION and distinfo checksum (3.0)
Changes:
* http://suricata-ids.org/2016/01/27/suricata-3-0-available/
* https://redmine.openinfosecfoundation.org/versions/80
PR: 206690
Submitted by: Franco Fichtner <franco opnsense org>
|
Thursday, 24 Dec 2015
|
13:31 koobs
security/suricata: Update to 3.0 RC3
- Update DISTVERSION and distinfo checksum (3.0RC3)
- Pet portlint (makepatch: patch UTC time)
Merry Christmas All! HO HO HO
PR: 205306
Submitted by: Franco Fichtner <franco opnsense org>
|
Thursday, 26 Nov 2015
|
11:25 koobs
security/suricata: Update to 3.0 RC1
- Update to 3.0 release candidate 1 (Welcome Netmap support!)
- Update pkg-plist accordingly
- Add NETMAP option (Enabled by default for packages)
- Sort OPTIONS_* alphabetically
- Enable verbose builds
- Remove patches (upstreamed)
- Update test target
|
Thursday, 22 Oct 2015
|
11:56 koobs
security/suricata: Update to 2.0.9
- Update PORTVERSION and distinfo checksum (2.0.9)
Changes:
https://github.com/inliniac/suricata/blob/suricata-2.0.9/ChangeLog
While I'm here,
- Standardize the length of pkg-message separators and add spaces
between them and the text body. <idea> It would be cool if the ports
framework could wrap these pkg-message's in standard formatting for
all ports automagically</idea>
Requested by: Martin Olsson (via email)
|
Tuesday, 12 May 2015
|
10:49 koobs
security/suricata: Update to 2.0.8
- Update to 2.0.8
This release fixes a bug in the DER parser which is used to
decode SSL/TLS certificates and could crash Suricata [1]
Security: CVE-2015-0971
Security: fe910ed6-f88d-11e4-9ae3-0050562a4d7b
MFH: 2015Q2
Security: CVE-2015-0971
Security: fe910ed6-f88d-11e4-9ae3-0050562a4d7b
|
Sunday, 18 Jan 2015
|
07:12 koobs
security/suricata: Update to 2.0.6, add lots of OPTIONS
- Update to 2.0.6
- Update pkg-plist
- Add LICENSE_FILE
- Add OPTIONS for:
* LUA scripting support
* LUAjit scripting support
* Suricata socket client
- Fix a reverse logic bug for JSON option
- Suricata links to nspr as a dependent of nss, add it to LIB_DEPENDS
- Create LOGS_DIR post-install
- Add patch to fix upstream issue 1353 [1]
[1] https://redmine.openinfosecfoundation.org/issues/1353
PR: 196801
Submitted by: cheffo freebsd-bg org (with changes)
|
Monday, 22 Dec 2014
|
15:11 koobs
security/suricata: Update to 2.0.5, Add NSS support
- Update to 2.0.5
- Add NSS option for file checksum and fingerprint support [1]
- Add default rules files [1]
- Add USES=autoreconf, remove USE_AUTOTOOLS and friends
- Override PATHFIX_MAKEFILEIN
- Use the install-strip target
- Fix HTP_PORT_CONFLICT_OFF typo (CONFLICT*S*)
- USES=iconv when using the bundled HTP version
- Cleanup and fix OPTION descriptions
- Sort OPTIONS and helpers
- Use the existing NO_HTP_PORT variable in pkg-plist (OPTIONS_SUB), remove
MHTP_PORT conditional accordingly
PR: 194953 [1]
Submitted by: Bill Meeks <bmeeks8 bellsouth net> [1]
|
Tuesday, 11 Nov 2014
|
15:57 garga
- Update suricata to 2.0.4 [1]
- Added JSON knob - this allows Suricata to be compiled with JSON output support
- Added GEOIP knob - this allows Suricata to support rules with geoip word
- Added HTP_PORT knob - this make the use of www/libhtp-suricata optional. E.g.
user can choose between build-in and port version.
- Unbreak PLIST renaming sample files from -sample to .sample
PR: 193220 [1]
Submitted by: cheffo [1]
Approved by: maintainer timeout (> 2 months)
Security: CVE-2014-6603
|
Saturday, 23 Aug 2014
|
12:08 koobs
security/suricata: Update to 2.0.3, Modernize
Now that libprelude is safe from EXPIRE and has been staged [1], and
devel/libhtp
now *actually* links against libiconv even though autoconf detection was fine
[2] ... Have fun!
- Update to 2.0.3
- Switch libhtp to the upstream version port (devel/libhtp)
- Use USES=libtool
- Use OPTIONS helpers and other OPTIONS_* goodies
- Sort USE(S)* section
- Deprecate USE_AUTOTOOLS (USES instead)
- Deprecate AUTOMAKE_ARGS, ACLOCAL_ARGS (no longer necessary)
- Update COMMENT
- Add m4 macro for checking compiler flags and add relevent
check to configure.ac. Our GCC doesn't like
-Wno-error=unused-result and upstreams configure bits arent as
portable as they could be.
[1] http://svnweb.freebsd.org/changeset/ports/365562
[2] http://svnweb.freebsd.org/changeset/ports/364955
Requested by: many
|
Sunday, 17 Nov 2013
|
03:09 koobs
security/suricata: Update to 1.4.6, Switch to libhtp-suricata, Un-BROKEN Clang.
- Update to 1.4.6
- Switch to the correct library in www/libhtp-suricata
- Take maintainership
- Enable STAGE support
- Remove uneccessary patches
- Configure: Add libhtp include and library location
- Configure: Add /var to --localstatedir
- Configure: Disable Python support explicitly
- QA: Remove BROKEN with clang
- QA: Update to new LIB_DEPENDS format
- QA: Use ETCDIR instead of custom path for CONFIG_DIR and RULES_DIR
- QA: Replace hardcoded strings with ${PORTNAME}
- QA: Add documentation and %%DOCSDIR%% to pkg-plist
- QA: Add TESTS option to include unit tests in binary
- QA: Add regression-test target (TMPDIR is not prefix safe)
- QA: Replace USE_GMAKE with USES=gmake
- QA: Remove automake from USE_AUTOTOOLS
- QA: Remove LICENSE_FILE for those listed in bsd.licenses.db.mk
- QA: Remove post-patch target
- QA: Sort USE/USES and combine LIB_DEPENDS
- QA: Clarify and tweak OPTIONS descriptions
Reviewed by: wxs, mva, Johannes Meixner
Approved by: wxs (maintainer)
|
Sunday, 18 Nov 2012
|
05:52 zi
- Update to 1.3.4
Feature safe: yes
|
Friday, 2 Nov 2012
|
19:10 zi
- Update to 1.3.3
Feature safe: yes
|
Wednesday, 10 Oct 2012
|
11:42 zi
- Update to 1.3.2
|
Thursday, 6 Sep 2012
|
02:17 zi
- Update to 1.3.1
|
Wednesday, 11 Jul 2012
|
02:36 zi
- Update to 1.3
- Convert to OptionsNG
|
Thursday, 23 Feb 2012
|
14:05 zi
- Update to 1.2.1 [1]
- Reset maintainership due to multiple maintainer timeouts
- Take maintainership
PR: ports/164471 [1]
Submitted by: Nikolay Denev <ndenev@gmail.com> [1]
|
Tuesday, 10 Jan 2012
|
19:34 wxs
- Update to 1.1.1.
- Use libhtp from ports instead of the bundled one.
- Remove check for 6.x.
PR: ports/163603
Submitted by: wxs@
Approved by: eksffa@freebsdbrasil.com.br (maintiner timeout)
|
Wednesday, 22 Jun 2011
|
00:29 wxs
- Update to 1.0.3.
- Add LICENSE.
PR: ports/157860
Submitted by: Ryan Steinmetz <rpsfa@rit.edu>
Approved by: Patrick Tracanelli <eksffa@freebsdbrasil.com.br> (maintainer)
|
Wednesday, 1 Sep 2010
|
15:31 jmelo
The Suricata Engine is an Open Source Next Generation Intrusion Detection and
Prevention Engine developed by the Open Information Security Foundation (OISF).
This engine is not intended to just replace or emulate the existing tools in
the industry, but will bring new ideas and technologies to the field.
OISF is part of and funded by the Department of Homeland Security's Directorate
for Science and Technology HOST program (Homeland Open Security Technology),
by the the Navy's Space and Naval Warfare Systems Command (SPAWAR), as well as
through the very generous support of the members of the OISF Consortium.
More information about the Consortium is available, as well as a list of our
current Consortium Members.
The Suricata Engine and the HTP Library are available to use under the GPLv2.
The HTP Library is an HTTP normalizer and parser written by Ivan Ristic of
Mod Security fame for the OISF. This integrates and provides very advanced
processing of HTTP streams for Suricata. The HTP library is required by the
engine but may also be used independently in a range of applications and tools.
WWW: http://openinfosecfoundation.org
PR: ports/150191
Submitted by: Patrick Tracanelli <eksffa@freebsdbrasil.com.br>
|
Number of commits found: 58 |