We are pleased to announce the releases of Suricata 7.0.4 and 6.0.17. These are security releases, fixing important issues.
Get the releases here:
7.0.4: https://www.openinfosecfoundation.org/download/suricata-7.0.4.tar.gz
6.0.17: https://www.openinfosecfoundation.org/download/suricata-6.0.17.tar.gz
Notable Changes
LibHTP has been updated to version 0.5.47 and includes a security fix. This version is bundled with Suricata these new Suricata releases.
Various security, performance, accuracy, and stability issues have been fixed.
Tickets for 7.0.4: 7.0.4 - Suricata - Open Information Security Foundation
Tickets for 6.0.17: 6.0.17 - Suricata - Open Information Security Foundation
CVE IDs Addressed
Suricata:
- CVE-2024-28870 - HIGH
Suricata security advisories: Security Advisories · OISF/suricata · GitHub
LibHTP:
- CVE-2024-28871 - HIGH
LibHTP security advisories: Security Advisories · OISF/libhtp · GitHub
Special Thanks
Alexey Simakov, Ralph Eastwood, Alexey Simakov, Arne Welzel, Jonathan Perkins, Simon Dugas, OSS-Fuzz, Coverity.
About Suricata
Suricata is a high-performance Network Threat Detection, IDS, IPS, and Network Security Monitoring engine. Open-source and owned by a community-run non-profit foundation, the Open Information Security Foundation (OISF). Suricata is developed by OISF, its supporting vendors, and the community.
Join Us for SuriCon 2024!
We are excited to meet our community live again this year in Madrid, Spain, November 13-15 2024 for SuriCon2024.
Don’t miss out!
Call for talks and registrations are now open: https://suricon.net/