zeek

We would like to thank Siavash Tahmureszadeh for their contribution to this release.

This release fixes the following security issues:

• Zeek's HTTP analyzer can be tricked into interpreting Transfer-Encoding or Content-Length headers set in MIME entities within HTTP bodies and change the analyzer behavior. This can be used to hide HTTP requests from analysis. Due to the fact...

We would like to thank clopmz, Mohan Dhawan (@Mohan-Dhawan), and Zach Robinette for their contributions to this release.

This release fixes the following bugs:

• ZeekJS was upgraded to v0.22.

• The to_subnet() built-in function's parsing of IPv6 subnets was changed to align with how IPv6 subnet literals are parsed in Zeek scripts. Previously, any subnet containing the ``::ffff:...

We would like to thank Siavash Tahmureszadeh for their contribution to this release.

This release fixes the following security issues:

• Zeek's HTTP analyzer can be tricked into interpreting Transfer-Encoding or Content-Length headers set in MIME entities within HTTP bodies and change the analyzer behavior. This can be used to hide HTTP requests from analysis. Due to the fact...

We'd like to thank Andrew Raffman (@andyraf), @arm7mm, Artyom Kalabukhov (@predator89090), Benjamin Grap (@blightzero), @biswajitutil, @cccs-jsjm, @chrisjlly, Craig P (@multicast-bytes), @DigiAngel, Mike Dopheide (@dopheide-esnet), Edoardo Mich (@edoardomich), @franky-m, Fupeng Zhao (@AmazingPP), Jan Grashöfer (@J-Gras), Klemens Nanni (@klemens-ya), Klemens Nanni (@klemensn), @kshitiz56, Mark...

We would like to thank Edoardo Mich (@edoardomich) and Peter Cullen (@pbcullen) for their contributions to this release.

This release fixes the following bugs:

• Reverts an inadvertent change to Zeekctl's pysubnettree submodule that was causing Zeekctl to require Python 3.10. A new version of Zeekctl is now included with more targeted fixes that don't include that requirement.

• Th...