Lucene search

DebianDEBIAN:DSA-5354-1:B0EEB

HistoryFeb 18, 2023 - 4:38 p.m.

[SECURITY] [DSA 5354-1] snort security update

2023-02-1816:38:22

lists.debian.org

snort

debian

cve-2020-3299

cve-2020-3315

cve-2021-1223

cve-2021-1224

cve-2021-1236

cve-2021-1494

cve-2021-1495

cve-2021-34749

cve-2021-40114

denial of service

filtering

security update

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

CVSS3

8.6

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N

AI Score

6.8

Confidence

Low

EPSS

0.004

Percentile

74.2%

JSON

Debian Security Advisory DSA-5354-1 [email protected]
https://www.debian.org/security/ Markus Koschany
February 18, 2023 https://www.debian.org/security/faq

Package : snort
CVE ID : CVE-2020-3299 CVE-2020-3315 CVE-2021-1223 CVE-2021-1224
CVE-2021-1236 CVE-2021-1494 CVE-2021-1495 CVE-2021-34749
CVE-2021-40114
Debian Bug : 1021276

Multiple security vulnerabilities were discovered in snort, a flexible Network
Intrusion Detection System, which could allow an unauthenticated, remote
attacker to cause a denial of service (DoS) condition or bypass filtering
technology on an affected device and ex-filtrate data from a compromised host.

For the stable distribution (bullseye), these problems have been fixed in
version 2.9.20-0+deb11u1.

We recommend that you upgrade your snort packages.

For the detailed security status of snort please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/snort

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: [email protected]

OSVersionArchitecturePackageVersionFilename
Debian10amd64snort-dbgsym< 2.9.20-0+deb10u1snort-dbgsym_2.9.20-0+deb10u1_amd64.deb
Debian10allsnort-common< 2.9.20-0+deb10u1snort-common_2.9.20-0+deb10u1_all.deb
Debian11amd64snort-common-libraries< 2.9.20-0+deb11u1snort-common-libraries_2.9.20-0+deb11u1_amd64.deb
Debian11arm64snort-common-libraries-dbgsym< 2.9.20-0+deb11u1snort-common-libraries-dbgsym_2.9.20-0+deb11u1_arm64.deb
Debian11armhfsnort-common-libraries-dbgsym< 2.9.20-0+deb11u1snort-common-libraries-dbgsym_2.9.20-0+deb11u1_armhf.deb
Debian11mipselsnort-common-libraries-dbgsym< 2.9.20-0+deb11u1snort-common-libraries-dbgsym_2.9.20-0+deb11u1_mipsel.deb
Debian11mipselsnort-dbgsym< 2.9.20-0+deb11u1snort-dbgsym_2.9.20-0+deb11u1_mipsel.deb
Debian11armelsnort< 2.9.20-0+deb11u1snort_2.9.20-0+deb11u1_armel.deb
Debian11arm64snort-common-libraries< 2.9.20-0+deb11u1snort-common-libraries_2.9.20-0+deb11u1_arm64.deb
Debian11amd64snort-dbgsym< 2.9.20-0+deb11u1snort-dbgsym_2.9.20-0+deb11u1_amd64.deb

OS	Version	Architecture	Package	Version	Filename
Debian	10	amd64	snort-dbgsym	< 2.9.20-0+deb10u1	snort-dbgsym_2.9.20-0+deb10u1_amd64.deb
Debian	10	all	snort-common	< 2.9.20-0+deb10u1	snort-common_2.9.20-0+deb10u1_all.deb
Debian	11	amd64	snort-common-libraries	< 2.9.20-0+deb11u1	snort-common-libraries_2.9.20-0+deb11u1_amd64.deb
Debian	11	arm64	snort-common-libraries-dbgsym	< 2.9.20-0+deb11u1	snort-common-libraries-dbgsym_2.9.20-0+deb11u1_arm64.deb
Debian	11	armhf	snort-common-libraries-dbgsym	< 2.9.20-0+deb11u1	snort-common-libraries-dbgsym_2.9.20-0+deb11u1_armhf.deb
Debian	11	mipsel	snort-common-libraries-dbgsym	< 2.9.20-0+deb11u1	snort-common-libraries-dbgsym_2.9.20-0+deb11u1_mipsel.deb
Debian	11	mipsel	snort-dbgsym	< 2.9.20-0+deb11u1	snort-dbgsym_2.9.20-0+deb11u1_mipsel.deb
Debian	11	armel	snort	< 2.9.20-0+deb11u1	snort_2.9.20-0+deb11u1_armel.deb
Debian	11	arm64	snort-common-libraries	< 2.9.20-0+deb11u1	snort-common-libraries_2.9.20-0+deb11u1_arm64.deb
Debian	11	amd64	snort-dbgsym	< 2.9.20-0+deb11u1	snort-dbgsym_2.9.20-0+deb11u1_amd64.deb