Open Information Security Foundation

01/15/2026

02:20 PM Suricata Feature #7847: rules: extend byte_extract named variables for use in other keywords/transformations such as xor

Thanks @jcallcott, I created 2 SV tests for this example to make it easier to analyze it: https://github.com/OISF/sur... Victor Julien

01/13/2026

04:40 PM Suricata Bug #8210 (Closed): rust: update lru crate to address RUSTSEC-2026-0002

Victor Julien

04:39 PM Suricata Bug #8211 (Closed): rust: update lru crate to address RUSTSEC-2026-0002 (8.0.x backport)

Addressed by commit 3bd9f773bdc65d7bede2f0576790a68fb68b7476 Victor Julien

01/11/2026

08:13 PM Suricata Bug #4286: detect: FN due to setup failure with http_cookie after isdataat

Test https://github.com/OISF/suricata-verify/pull/2851 Victor Julien

07:54 PM Suricata Bug #4286: detect: FN due to setup failure with http_cookie after isdataat

These 2 work... Victor Julien

08:10 PM Suricata Task #5483 (In Review): SV tests to demonstrate false negative behavior for negated isdataat with http_cookie keyword (bug 4286)

https://github.com/OISF/suricata-verify/pull/2851 Victor Julien

07:47 PM Suricata Feature #6693 (Assigned): detect/byte_jump: add support for bitmask option

Think we should consider backporting it too if it is claimed to work in the docs. Victor Julien

08:09 AM Suricata Feature #8221 (New): http: header handling should treat duplicates as multi-buffer, not concat

When encountering duplicate headers they are concatenated:... Victor Julien

07:59 AM Suricata Bug #7754: http.host and http.host.raw contain the same Host header value twice, with a delimiter

I would like to get rid of the duplicate header concat logic completely, but this is a breaking change. This behavior... Victor Julien

01/10/2026

07:58 PM Suricata Bug #7842: base64: base64_data with relative match after base64_decode:relative fails

https://github.com/OISF/suricata/pull/14584 Victor Julien