Critical Vulnerabilities in Socat Affecting Ubuntu 24.04 LTS

Critical Vulnerabilities in Socat Affecting Ubuntu 24.04 LTS

First seen 6 Jul 2026, 23:49 UTC UbuntuLinuxsecurity 92% similarity 70.5

Article Content

Browse articles
ThreatCluster

Two significant vulnerabilities were discovered in the socat utility, affecting Ubuntu 24.04 LTS. CVE-2026-56123 allows remote attackers to execute arbitrary code via an improperly handled SOCKS5 proxy server parser. CVE-2024-54661 permits local attackers to overwrite arbitrary files due to incorrect handling of a sample script. Both vulnerabilities pose serious risks, especially to systems running the affected Ubuntu version. The issues were published on June 25, 2026, and December 4, 2024, respectively. Users are advised to update their systems to mitigate these risks. Ubuntu Pro offers ten-year security coverage for affected packages. A standard system update will apply the necessary fixes.

Key Points: • CVE-2026-56123 enables remote code execution via SOCKS5 proxy parser flaws. • CVE-2024-54661 allows local file overwrites on Ubuntu 24.04 LTS. • Immediate system updates are recommended to mitigate these vulnerabilities.

ThreatCluster AI

Timeline

2024-12-04
CVE-2024-54661 published
Local file overwrite vulnerability in socat discovered, affecting Ubuntu 24.04 LTS.
Ubuntu
2026-06-25
CVE-2026-56123 published
Remote code execution vulnerability in socat identified, impacting Ubuntu 24.04 LTS.
Linuxsecurity
2026-07-06
Security notice issued
Ubuntu issues USN-8511-1, advising users to update socat to address critical vulnerabilities.
Ubuntu

Community

Browse all →