Important Release – Suricata 3.1.2

We are excited to announce the release of Suricata 3.1.2. This release fixes some important issues, so we highly recommend updating.

Get the release here:

Changes you can expect from this new release include:

Feature #1830: support ‘tag’ in eve log
Feature #1870: make logged flow_id more unique
Feature #1874: support Cisco Fabric Path / DCE
Feature #1885: eve: add option to log all dropped packets
Feature #1886: dns: output filtering
Bug #1849: ICMPv6 incorrect checksum alert if Ethernet FCS is present
Bug #1853: fix dce_stub_data buffer
Bug #1854: unified2: logging of tagged packets not working
Bug #1856: PCAP mode device not found
Bug #1858: Lots of TCP ‘duplicated option/DNS malformed request data’
after upgrading from 3.0.1 to 3.1.1
Bug #1878: dns: crash while logging sshfp records
Bug #1880: icmpv4 error packets can lead to missed detection in tcp/udp
Bug #1884: libhtp 0.5.22

Suricata’s ongoing development and support would not be possible without our community – we would like to give a special thank the following contributors for this new release:

Kirill Shipulin – Positive Technologies

Christoffer Hallstensen – NTNUGjøvik

Pedro Marinho – Proofpoint

Tom Decanio – FireEye

Coverity Scan

To learn more about Suricata 3.1.2 and to participate in the upcoming roadmap conversation join us at SuriCon – – November 9 – 11 in Washington, DC.