The CVE-2015-3222 vulnerability, which allows for root escalation via syscheck has been fixed in OSSEC 2.8.2. Full details of the issue can be found on the OSSEC Github repository – https://github.com/ossec/ossec-hids/releases/tag/2.8.2.
OSSEC 2.8.1 has been released to address the security issue identified by Jeff Petersen of Roka Security LLC. Full details of the issue can be found on the OSSEC Github repository – https://github.com/ossec/ossec-hids/releases/tag/2.8.1. This correction will create the temp file for the hosts deny file in /var/ossec and will use mktemp where available to create […]
This release marks our second release candidate for OSSEC 2.9 after some great input from our testers out there. Assuming no issues are reported, this release will become the final OSSEC release. Now is when we need really your help! As a community driven project, we need all the testing a release this size can […]