Suricata 7.0.4 and 6.0.17 released

We are pleased to announce the releases of Suricata 7.0.4 and 6.0.17. These are security releases, fixing important issues.

Get the releases here:
7.0.4: https://www.openinfosecfoundation.org/download/suricata-7.0.4.tar.gz
6.0.17: https://www.openinfosecfoundation.org/download/suricata-6.0.17.tar.gz

Notable Changes

LibHTP has been updated to version 0.5.47 and includes a security fix. This version is bundled with Suricata these new Suricata releases.

Various security, performance, accuracy, and stability issues have been fixed.

Tickets for 7.0.4: 7.0.4 – Suricata – Open Information Security Foundation
Tickets for 6.0.17: 6.0.17 – Suricata – Open Information Security Foundation

CVE IDs Addressed

Suricata:

  • CVE-2024-28870 – HIGH

Suricata security advisories: Security Advisories · OISF/suricata · GitHub

LibHTP:

  • CVE-2024-28871 – HIGH

LibHTP security advisories: Security Advisories · OISF/libhtp · GitHub

Special Thanks

Alexey Simakov, Ralph Eastwood, Alexey Simakov, Arne Welzel, Jonathan Perkins, Simon Dugas, OSS-Fuzz, Coverity.

About Suricata

Suricata is a high-performance Network Threat Detection, IDS, IPS, and Network Security Monitoring engine. Open-source and owned by a community-run non-profit foundation, the Open Information Security Foundation (OISF). Suricata is developed by OISF, its supporting vendors, and the community.

Join Us for SuriCon 2024!

We are excited to meet our community live again this year in Madrid, Spain, November 13-15 2024 for SuriCon2024.

Don’t miss out!

Call for talks and registrations are now open: https://suricon.net/