Release Notes: An SSL parsing issue was fixed (CVE-2013-5919). IPv6-in-IPv6 decoding was fixed. Bugs in the pattern matcher and content inspection were fixed. Logging of tagged packets was fixed.
Release Notes: IPv6 issues were fixed.
Release Notes: HTTP support was much improved. CUDA support was updated. A DNS parser and logger were added. Lua support was improved. The stream engine was made more robust. IPS mode was improved. Many smaller improvements and fixes were made.
Release Notes: This release improves inspection order in relation to stream reassembly and fixes a false positive on IP fragments, the pass action, HTTP Connect tunnel crashes, and several Unix socket issues.
Release Notes: A case of missed detection in bytetest, bytejump, and byteextract was fixed. Tunneled packets can now be dropped properly in IPS mode. The OS X build was fixed.
Release Notes: Several accuracy issues were fixed.
Release Notes: The GeoIP keyword was added. HTTP host header matching was added. New Unix socket commands were added. Napatech support was improved. IPFW support was improved. HTTP query string normalization was improved. Many issues were fixed.
Release Notes: Several stability and accuracy issues were fixed.
Release Notes: Interactive Unix Socket mode was added. IP Reputation support was added. A Lua scripting detection keyword was added. IP Defrag engine performance was much improved. Global thresholding was improved. AF_PACKET IPS mode support was added. File log output was improved. HTTP inspection was made more configurable. Live packet capture stats support was added. The stream reassembly engine was improved. TLS cert logging, storing, and fingerprint matching was added. Support for decoding various tunnel protocols was added. Delayed detection engine initialization support was added.
Release Notes: This release fixes a major flow engine memory leak, a case in which unified2 could overwrite its own alert files, and the Windows build.