We are pleased to announce the releases of Suricata 8.0.1 and 7.0.12.
These are security releases, fixing a number of important issues.
Get the releases here:
8.0.1: https://www.openinfosecfoundation.org/download/suricata-8.0.1.tar.gz
7.0.12: https://www.openinfosecfoundation.org/download/suricata-7.0.12.tar.gz
Notable Changes
With Suricata 7.0.12, LibHTP has been updated to version 0.5.52. This version is bundled with this release. The 8 series does not use the old C implementation of LibHTP.
Various security, performance, accuracy, and stability issues have been fixed.
8.0.1 tickets: https://redmine.openinfosecfoundation.org/versions/221
7.0.12 tickets: https://redmine.openinfosecfoundation.org/versions/220
CVE IDs Addressed:
CVE-2025-59147: HIGH (7.0.x and 8.0.x)
CVE-2025-59148: HIGH (8.0.x only)
CVE-2025-59149: MODERATE (8.0.x only)
CVE-2025-59150: HIGH (8.0.x only)
Suricata Security Advisories: Security Advisories · OISF/suricata · GitHub
OISF Signing key updated
The OISF signing key has been updated to have a later expiration date. It is the same key as before, but users will need to refresh it:
gpg --receive-keys 2BA9C98CCDF1E93A
It can also be downloaded from:
https://www.openinfosecfoundation.org/downloads/OISF.pub
Special Thanks
Angelo Mirabella, Adam Kiripolsky, Alexandre Iooss, Boris Tonofa, Charlie Vigue, Eric Leblond, Theo Buehler, Thomas Winter, Tommy Wang, Oss-Fuzz, Coverity.
Join us for SuriCon 2025!!
This year’s Suricata Community Conference will happen in Montreal, Canada, from November 19 to 21.
SuriCon is a great place to present exciting work or research done with Suricata. Come share it with us! The Call for Talks is open for a couple more days: Call for Talks – SURICON.
Conference and training details, sponsorship opportunities, and more at https://suricon.net/ .
About Suricata
Suricata is a high-performance Network Threat Detection, IDS, IPS, and Network Security Monitoring engine. Open-source and owned by a community-run non-profit foundation, the Open Information Security Foundation (OISF). Suricata is developed by OISF, its supporting vendors, and the community.