Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
7.5
Suricata: Crashes when using 'tls.alpn' rule keyword
DEBIAN-CVE-2026-31931
Summary
Suricata, a network security tool, can crash if a specific rule is used. This can happen if you're using an older version of Suricata. Update to the latest version (8.0.4 or later) to fix the issue.
What to do
- Update debian suricata to version 1:8.0.4-1.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| debian | suricata | All versions | – |
| debian | suricata | All versions | – |
| debian | suricata | All versions | – |
| debian | suricata | <= 1:8.0.4-1 | 1:8.0.4-1 |
Original title
Suricata is a network IDS, IPS and NSM engine. From version 8.0.0 to before version 8.0.4, use of the "tls.alpn" rule keyword can cause Suricata to crash with a NULL dereference. This issue has bee...
Original description
Suricata is a network IDS, IPS and NSM engine. From version 8.0.0 to before version 8.0.4, use of the "tls.alpn" rule keyword can cause Suricata to crash with a NULL dereference. This issue has been patched in version 8.0.4.
- https://security-tracker.debian.org/tracker/CVE-2026-31931 Vendor Advisory
Published: 2 Apr 2026 · Updated: 3 Apr 2026 · First seen: 3 Apr 2026