{"uuid": "647bd131-5525-47ea-8d98-53d132cabe2e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "name": "Suricata 8.0.2 and 7.0.13 released - including multiple vulnerabilities", "description": "# Suricata 8.0.2 and 7.0.13 released! - Suricata\nWe are pleased to announce the releases of Suricata 8.0.2 and 7.0.13.\n\nThese are security releases, fixing a number of important issues.\n\nGet the releases here:\n\n8.0.2: [https://www.openinfosecfoundation.org/download/suricata-8.0.2.tar.gz](https://www.openinfosecfoundation.org/download/suricata-8.0.2.tar.gz)\n\n7.0.13: [https://www.openinfosecfoundation.org/download/suricata-7.0.13.tar.gz](https://www.openinfosecfoundation.org/download/suricata-7.0.13.tar.gz)\n\n[](https://forum.suricata.io/t/suricata-8-0-2-and-7-0-13-released/6100#p-18099-notable-changes-1)Notable Changes\n----------------------------------------------------------------------------------------------------------------\n\nSuricata-update has been updated to version 1.3.7. This version is bundled with the releases.\n\nVarious security, performance, accuracy, and stability issues have been fixed.\n\n8.0.2 tickets: [https://redmine.openinfosecfoundation.org/versions/225](https://redmine.openinfosecfoundation.org/versions/225)\n\n7.0.13 tickets: [https://redmine.openinfosecfoundation.org/versions/224](https://redmine.openinfosecfoundation.org/versions/224)\n\n### [](https://forum.suricata.io/t/suricata-8-0-2-and-7-0-13-released/6100#p-18099-cve-ids-addressed-2)CVE IDs Addressed:\n\n*   CVE-2025-64344: HIGH (7.0.x and 8.0.x)\n*   CVE-2025-64333: HIGH (7.0.x and 8.0.x)\n*   CVE-2025-64332: HIGH (7.0.x and 8.0.x)\n*   CVE-2025-64331: HIGH (7.0.x and 8.0.x)\n*   CVE-2025-64330: HIGH (7.0.x and 8.0.x)\n*   CVE-2025-64335: HIGH (8.0.x only)\n*   CVE-2025-64334: HIGH (8.0.x only)\n\nSuricata Security Advisories: [https://github.com/OISF/suricata/security/advisories](https://github.com/OISF/suricata/security/advisories)\n\n[](https://forum.suricata.io/t/suricata-8-0-2-and-7-0-13-released/6100#p-18099-oisf-signing-key-updated-3)OISF Signing key updated\n----------------------------------------------------------------------------------------------------------------------------------\n\nThe OISF signing key has been recently updated to have a later expiration date. It is the same key as before, but users will need to refresh it:\n\n```\ngpg --receive-keys 2BA9C98CCDF1E93A\n```\n\n\nIt can also be downloaded from:\n\n[https://www.openinfosecfoundation.org/downloads/OISF.pub](https://www.openinfosecfoundation.org/downloads/OISF.pub)\n\n[](https://forum.suricata.io/t/suricata-8-0-2-and-7-0-13-released/6100#p-18099-special-thanks-4)Special Thanks\n--------------------------------------------------------------------------------------------------------------\n\nAdam Kiripolsky, Alain T\u00e9rieur, Amir Boussejra, Andreas Dolp, Andy Awad, Bai Liang, Cheng Longfei, Fupeng Zhao, Heng Li, Jamie Lavigne, Jesse Lepich, Jules Lumbergh, Marko Jahnke, [Outreachy](https://www.outreachy.org/), [OSS-Fuzz](https://github.com/google/oss-fuzz), [Coverity](https://scan.coverity.com/).\n\n[](https://forum.suricata.io/t/suricata-8-0-2-and-7-0-13-released/6100#p-18099-join-us-for-suricon-2025-5)Join us for SuriCon 2025!!\n------------------------------------------------------------------------------------------------------------------------------------\n\nThis year\u2019s Suricata Community Conference is happening this month in Montreal, Canada, from November 19 to 21.\n\nSuriCon is a great place to present exciting work or research done with Suricata. Come share it with us! Check the agenda, we always have great talks ![:smiley:](https://emoji.discourse-cdn.com/twitter/smiley.png?v=15) [https://suricon.net/agenda-montreal/](https://suricon.net/agenda-montreal/)\n\nThis year, we have three 2-day training sessions to choose from, including a brand-new Threat Hunting class, and a Rule Writing training. Some rooms are getting full, don\u2019t miss your spot! [https://suricon.net/trainings/](https://suricon.net/trainings/)\n\nCheck everything SuriCon and get book room deals at [https://suricon.net/](https://suricon.net/) .\n\n**About Suricata**\n------------------\n\n[Suricata](https://suricata.io/) is a high-performance Network Threat Detection, IDS, IPS, and Network Security Monitoring engine. Open-source and owned by a community-run non-profit foundation, the Open Information Security Foundation ([OISF](https://oisf.net/)). Suricata is developed by OISF, its supporting vendors, and the community.\n\n\u2014\u2014\u2014\u2014\u2014\u2014\u2014\u2014\u2014\u2014\u2014\u2014\u2014\u2014\u2014\n\nOriginally posted by Victor Julien to the Suricata forum: [https://forum.suricata.io/t/suricata-8-0-2-and-7-0-13-released](https://forum.suricata.io/t/suricata-8-0-2-and-7-0-13-released)", "creation_timestamp": "2025-11-06T14:22:09.745875+00:00", "timestamp": "2025-11-06T14:22:09.745875+00:00", "related_vulnerabilities": ["CVE-2025-64333", "CVE-2025-64344", "CVE-2025-64331", "CVE-2025-64332", "CVE-2025-64334", "CVE-2025-64330", "CVE-2025-64335"], "author": {"login": "adulau", "name": "Alexandre Dulaunoy", "uuid": "c933734a-9be8-4142-889e-26e95c752803"}}