| Version | Change log |
| Snort 2.9.20 Jun 9, 2022 | |
| Snort 2.9.19 Dec 8, 2021 | |
| Snort 2.9.18.1 Sep 3, 2021 | |
| Snort 2.9.18.0 Jun 16, 2021 |
New Additions: Added range field support in HTTP preprocessor. Added alert for HTTP chunk size mismatch. Added support to detect SNMP 'report pdu'. Added additional stats for SMB preprocessor. Improvements and fixes: Fixed a condition in which an alert would not be generated. Fixed possible memory corruption in SMB preprocessor. Fixed handling ICMP error code -4 . Fixed an error when the debugmsgs option enabled in compilation. |
| Snort 2.9.17.1 Mar 29, 2021 | |
| Snort 2.9.17 Oct 30, 2020 |
New Additions: Added support for s7Commplus protocol. Support for allowing common names across rule options. Added support to detect TCP Fast Open packets. Improvements / Fix: Added support for HTTP range field parsing to detect if HTTP response/request is indeed partial or full content. Fixed TCP segment queue hole issue as per the RFC793 recommendation for OOO Ack packet handling. Fixed multiple static analysis issues. Miscellaneous SMB bug fixes. |
| Snort 2.9.16.1 Aug 5, 2020 |
New Additions: Added support for GCC version 10.1.1. Improvements / Fix: Added packet counters to make sure flows with one-way data don't pend forever. Fixed potential race condition between reload and exit path. |
| Snort 2.9.16 Apr 13, 2020 |
New Additions: Added support for early inspection of HTTP payload before flushing in pre-ack mode. This feature can be enabled using fast_blocking in http inspect configuration. Added 64-bit support for Windows 10 operating system. Added support for glibc version 2.30. Improvements / Fix: Fixed file policy not working with character prefix in chunk size. Updated the file magic to detect ALZ file types. Addressed an issue when out-of-order FIN is received by dropping it. Normalize randomly encoded nulls interspersed in the HTTP server response to UTF-8. |
| Snort 2.9.15.1 Feb 11, 2020 | |
| Snort 2.9.15.0 Oct 10, 2019 |
New Additions: Added new debugs to print detection, file_processing and Preproc time consumption info and verdict. Added support to detect new Korean file formats .egg and .alg in the file preprocessor. Added support to detect new RAR file-type in the file preprocessor. Improvements / Fix: Fix to generate ALERT if TEID value is zero in GTP v1 and v2 packets. Fix to whitelist ftp data sessions when no file policy exists. Fix RTF file magic to a more generic value to prevent evasions. Added debug logs during HTTP reload Added rule SID check during validation Fix an issue where HTTP was processing non-HTTP traffic on port 443 Added new debugs to print detection, file processing, and Prepro time consumption info and verdicts |
