Snort Subscriber Rules Update 2022-01-27

[Research <research () sourcefire com>]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


Talos Snort Subscriber Rules Update

Synopsis:
This release adds and modifies rules in several categories.

Details:
Talos has created the following rules, SIDs 58955-58956, to address
CVE-2021-4034, a local privilege escalation vulnerability in Polkit's
pkexec utility.

Talos has added and modified multiple rules in the browser-ie,
file-executable, file-image, file-other, malware-cnc, malware-other,
os-linux and server-webapp rule sets to provide coverage for emerging
threats from these technologies.


For a complete list of new and modified rules please see:

https://www.snort.org/advisories
-----BEGIN PGP SIGNATURE-----

iQIcBAEBAgAGBQJh8sgXAAoJEGCbAk8rPt0HMT8P/jGvZV8lYeHYTIVMCz9Eeu2m
2aOfohDh2ikjvVnYQbQHD4Z6IAvJLXeMX0cu8rnXJ0PD+HBimoWVgKda0DQut0s5
/5Y9KAG38E9X+V3fmvFwcNFUr3gPg6LbKQ9grugi8mYzdSo3hZH0aDDwxFN07OPT
KxrvzY3lftG0eujZffrp+d/4pQdbJeJCWef7AG+MQMevf39sOYcWB7bRF42jiiKm
b54FNEHXv+94U60hpOBz+0iBfiRM2I1+AbCz8TBWtw/Vo7KcRJOlKVbwO4HDrPtg
PHjCvi1yK460PAlP11YHfpvsYqaj6cDnPSyMIIhJpUU0n1Qrn4KGuIHlWgbAVq8/
HQbKb7gxlivuE7ODnkrU8CoKvU61l6Kdxo1bPkHc9/1oeunnoHFGi3tH3AFzBR5Y
9VSlDWCyLvq/06vbbJeZL1n1n5lmwNobrTolcB6oBHtbxGkq0+KPfxtA6aTSkYpN
yPF0s7gmI9x6C8L9BKXFgtObNj3Ua3RY0yPoNCtgHi5yQM7WiJDptyY22IAh29Pn
no2T0dJ1hhPpcu/imEQFCPME9koXuEYUbs4eAHgGnSoHtcM4YfeMbXNHGUv5tF//
sQliH3vHqSjE5pD/3XkF4finI1E1GueTSZrIcNPtow6Fa68+VpPVPiTh9UQ9siQV
DfEUywXzypAB6Pa7dgBu
=Uy1s
-----END PGP SIGNATURE-----

_______________________________________________
Snort-sigs mailing list
Snort-sigs () lists snort org
https://lists.snort.org/mailman/listinfo/snort-sigs

Please visit http://blog.snort.org for the latest news about Snort!

Please follow these rules: https://snort.org/faq/what-is-the-mailing-list-etiquette

Visit the Snort.org to subscribe to the official Snort ruleset, make sure to stay up to date to catch the most <a 
href=" https://snort.org/downloads/#rule-downloads";>emerging threats</a>!