Suricata 7.0.5 and 6.0.19 released!

We are pleased to announce the releases of Suricata 7.0.5 and 6.0.19. These are security releases, fixing important issues.

Get the releases here:
7.0.5: https://www.openinfosecfoundation.org/download/suricata-7.0.5.tar.gz
6.0.19: https://www.openinfosecfoundation.org/download/suricata-6.0.19.tar.gz

Notable Changes

DPDK powersave mode was backported. It is disabled by default.
LibHTP has been updated to version 0.5.48. This version is bundled with these new Suricata releases.
Suricata-Update has been updated to 1.3.3 in Suricata 7.0.5.

Various security, performance, accuracy, and stability issues have been fixed.

Tickets for 7.0.5: 7.0.5 - Suricata - Open Information Security Foundation
Tickets for 6.0.19: 6.0.19 - Suricata - Open Information Security Foundation

CVE IDs Addressed

  • CVE-2024-32663 CRITICAL (HIGH for 6.0.x)
  • CVE-2024-32664 CRITICAL (HIGH for 7.0.x)
  • CVE-2024-32867 MODERATE

Suricata security advisories: Security Advisories · OISF/suricata · GitHub

Special Thanks

Evgeny Legerov of Kaspersky Lab, Arne Welzel, OSS-Fuzz, Coverity.

EOL for Suricata 6

The Suricata 6.0.x branch will go End of Life (EOL) in July 2024. This means no more support, updates and fixes for the 6.0.x branch.

All users of Suricata 6 or earlier are strongly recommended to update to Suricata 7 soon.

More information on the EOL policy EOL Policy - Suricata

About Suricata

Suricata is a high-performance Network Threat Detection, IDS, IPS, and Network Security Monitoring engine. Open-source and owned by a community-run non-profit foundation, the Open Information Security Foundation (OISF). Suricata is developed by OISF, its supporting vendors, and the community.

Join Us for SuriCon 2024!

We are excited to meet our community live again this year in Madrid, Spain, November 13-15 2024 for SuriCon2024.

Don’t miss out!

Call for talks and registrations are now open: https://suricon.net/

4 Likes