Tuesday, May 3, 2016

Snort++ Build 197 Available Now

Snort++ build 197 is now available on snort.org.  This is the latest monthly update available for download.  You can also get the latest updates from github (snortadmin/snort3) which is updated weekly.

Bug Fixes:

  • cmake and pkgconfig fixes
  • fixed clang, gcc, and icc, build warnings
  • fix FreeBSD build
  • fix building against LuaJIT using only pkg-config
  • fix rule compilation for sticky buffers
  • miscellaneous warning and lint cleanup
  • update extras to better serve as examples
  • cleanup use of protocol numbers and identifiers
  • fixed so rule input / output
  • fixed protocol numbering issues
  • fixed 129:18
  • fix session parsing abort handling
  • perf_monitor config and format fixes
  • new_http_inspect unicode initialization bug fix
  • legacy search engine cleanup
  • fix process stats output
  • update extra version to alpha 4 - thanks to Henry Luciano <cuncator@mote.org> for reporting the issue
  • fix unit tests
  • fixed memory leaks
  • fixed static analysis issues

Enhancements:
  • use hwloc for CPU affinity
  • cmake - check all dependencies before fatal error
  • add configure --enable-address-sanitizer
  • add configure --enable-code-coverage
  • remove legacy/unused obfuscation api
  • stream_tcp refactoring; starting on updates
  • add dce rule options iface, opnum, smb, stub_data, tcp
  • add dce option for byte_extract/jump/test
  • initial side channel and file connector for high availability
  • initial high availability for UDP
  • new_http_inspect %u encoding and utf 8 bare byte
  • add UTF-8 normalization for new_http_inspect
  • unicode map file for new_http_inspect
  • host_cache and host_tracker config and stats updates
  • snort2Lua updates for preproc sensitive_data and sd_pattern option
  • dce2 port continued - add dce packet fragmentation
  • dce segmentation changes
  • dce smb header checks port - non segmented packets
  • memory manager updates
  • added iterative pruning for out of memory condition
  • added preemptive pruning to memory manager
  • added thread timing stats to perf_monitor
  • perf_monitor refactoring
  • added file capture stats
  • added packet_capture module
  • DAQ interface refactoring
  • updated catch headers to v1.4.0

Please submit bugs, questions, and feedback to bugs@snort.org or the Snort-Users mailing list.

Happy Snorting!
The Snort Release Team

Posted by Russ Combs
Labels: , ,