UbuntuUpdates.org

Package "socat"

Name: socat

Description:

multipurpose relay for bidirectional data transfer

Latest version: 1.8.0.0-4ubuntu0.1
Release: noble (24.04)
Level: updates
Repository: main
Homepage: https://www.dest-unreach.org/socat/

Links


Download "socat"


Other versions of "socat" in Noble

Repository Area Version
base main 1.8.0.0-4build3
security main 1.8.0.0-4ubuntu0.1

Changelog

Version: 1.8.0.0-4ubuntu0.1 2026-07-06 19:07:36 UTC

  socat (1.8.0.0-4ubuntu0.1) noble-security; urgency=medium

  * SECURITY UPDATE: security issue in sample script
    - debian/patches/CVE-2024-54661.patch: Arbitrary file overwrite in
      readline.sh, test.sh.
    - CVE-2024-54661
  * SECURITY UPDATE: heap overflow via SOCKS5 proxy server
    - debian/patches/CVE-2026-56123-1.patch: fixed SOCKS5 client buffer
      overflow in test.sh, xio-socks5.h.
    - debian/patches/CVE-2026-56123-2.patch: corrected test for non-bash in
      test.sh.
    - CVE-2026-56123

 -- Marc Deslauriers <email address hidden> Fri, 03 Jul 2026 08:45:49 -0400

CVE-2024-54661 readline.sh in socat before1.8.0.2 relies on the /tmp/$USER/stderr2 file.
CVE-2026-56123 socat versions 1.8.0.0 through 1.8.1.1 contain a heap-based buffer overflow vulnerability that allows a malicious SOCKS5 proxy server to overwrite ad



About   -   Send Feedback to @ubuntu_updates