ืคึผืจืึธื”ืึธืกื˜ืขืจ > ื‘ืœืึธื’ > ืื™ื ื˜ืขืจื ืขื˜ ื ื™ื™ึทืขืก > Suricata 7.0.3 ืื•ืŸ 6.0.16 ื“ืขืจื”ื™ื™ึทื ื˜ื™ืงืŸ ืžื™ื˜ ืงืจื™ื˜ื™ืฉ ื•ื•ืึทืœื ืขืจืึทื‘ื™ืœื™ื˜ื™ื– ืคืึทืจืคืขืกื˜ื™ืงื˜

Suricata 7.0.3 ืื•ืŸ 6.0.16 ื“ืขืจื”ื™ื™ึทื ื˜ื™ืงืŸ ืžื™ื˜ ืงืจื™ื˜ื™ืฉ ื•ื•ืึทืœื ืขืจืึทื‘ื™ืœื™ื˜ื™ื– ืคืึทืจืคืขืกื˜ื™ืงื˜

ื“ื™ OISF (Open Information Security Foundation) ื”ืื˜ ืืจื•ื™ืก ืงืขืจืขืงื˜ื™ื•ื• ืจื™ืœื™ืกื™ื– ืคื•ืŸ ื“ื™ ื ืขืฅ ื™ื ื˜ืจื•ื–ืฉืึทืŸ ื“ื™ื˜ืขืงืฉืึทืŸ ืื•ืŸ ืคืึทืจื”ื™ื˜ื•ื ื’ ืกื™ืกื˜ืขื Suricata 7.0.3 ืื•ืŸ 6.0.16, ื•ื•ืึธืก ืขืœื™ืžื™ื ื™ืจืŸ ืคื™ื ืฃ ื•ื•ืึทืœื ืขืจืึทื‘ื™ืœื™ื˜ื™ื–, ื“ืจื™ื™ ืคื•ืŸ ื•ื•ืึธืก (CVE-2024-23839, CVE-2024-23836, CVE-2024-23837) ืื™ื– ืึทืกื™ื™ื ื“ ืึท ืงืจื™ื˜ื™ืฉ ื’ืขืคืึทืจ ืžื“ืจื’ื”. ื“ื™ ื‘ืึทืฉืจื™ื™ึทื‘ื•ื ื’ ืคื•ืŸ ื“ื™ ื•ื•ืึทืœื ืขืจืึทื‘ื™ืœื™ื˜ื™ื– ืื™ื– ื ืึธืš ื ื™ืฉื˜ ื“ื™ืกืงืœืึธื•ื–ื“, ืึธื‘ืขืจ, ื“ื™ ืงืจื™ื˜ื™ืฉ ืžื“ืจื’ื” ืื™ื– ื™ื•ื–ืฉืึทื•ื•ืึทืœื™ ืึทืกื™ื™ื ื“ ื•ื•ืขืŸ ืขืก ืื™ื– ืžืขื’ืœืขืš ืฆื• ืจื™ืžืึธื•ื˜ืœื™ ื•ื™ืกืคื™ืจืŸ ื“ื™ ืึทื˜ืึทืงืขืจ ืก ืงืึธื“. ื›ืœ ืกื•ืจื™ืงืึทื˜ืึท ื™ื•ื–ืขืจื– ื–ืขื ืขืŸ ืึทื“ื•ื•ื™ื™ื–ื“ ืฆื• ื“ืขืจื”ื™ื™ึทื ื˜ื™ืงืŸ ื–ื™ื™ืขืจ ืกื™ืกื˜ืขืžืขืŸ ื’ืœื™ื™ืš.

ื“ื™ Suricata ื˜ืฉืึทื ื’ืขืœืึธื’ ื˜ื•ื˜ ื ื™ืฉื˜ ื‘ืคื™ืจื•ืฉ ื”ื•ื™ื›ืคึผื•ื ืงื˜ ื“ื™ ื•ื•ืึทืœื ืขืจืึทื‘ื™ืœื™ื˜ื™ื–, ืึธื‘ืขืจ ืื™ื™ื ืขืจ ืคื•ืŸ ื“ื™ ืคื™ืงืกื™ื– ื‘ืืžืขืจืงื˜ ื–ื›ึผืจื•ืŸ ืึทืงืกืขืก ื ืึธืš ืคืจื™ื™ ื•ื•ืขืŸ ืคึผืจืึทืกืขืกื™ื ื’ ืคืึทืœืฉ ื”ื˜ื˜ืคึผ ื›ืขื“ืขืจื–. ืื™ื™ื ืขืจ ืคื•ืŸ ื“ื™ ืงืจื™ื˜ื™ืฉ ื•ื•ืึทืœื ืขืจืึทื‘ื™ืœื™ื˜ื™ื– (CVE-2024-23837) ืื™ื– ืคืึธืจืฉื˜ืขืœืŸ ืื™ืŸ ื“ื™ LibHTP HTTP ืคืึทืจืงืขืจ ืคึผืึทืจืกื™ื ื’ ื‘ื™ื‘ืœื™ืึธื˜ืขืง.

ืžืงื•ืจ: opennet.ru

ืœื™ื™ื’ืŸ ืึท ื‘ืึทืžืขืจืงื•ื ื’