Information on source package iperf3

Available versions

ReleaseVersion
bullseye3.9-1+deb11u1
bullseye (security)3.9-1+deb11u2
bookworm3.12-1+deb12u1
trixie3.18-2
sid3.19.1-1

Open issues

BugbullseyebookwormtrixiesidDescription
CVE-2025-54350vulnerablevulnerable (no DSA)vulnerable (no DSA)fixedIn iperf before 3.19.1, iperf_auth.c has a Base64Decode assertion fail ...
CVE-2025-54349vulnerablevulnerable (no DSA)vulnerable (no DSA)fixedIn iperf before 3.19.1, iperf_auth.c has an off-by-one error and resul ...
CVE-2024-53580fixedvulnerable (no DSA)fixedfixediperf v3.17.1 was discovered to contain a segmentation violation via t ...
CVE-2024-26306fixedvulnerable (no DSA, ignored)fixedfixediPerf3 before 3.17, when used with OpenSSL before 3.2.0 as a server wi ...
CVE-2023-7250fixedvulnerable (no DSA, ignored)fixedfixedA flaw was found in iperf, a utility for testing network performance u ...

Resolved issues

BugDescription
CVE-2025-54351In iperf before 3.19.1, net.c has a buffer overflow when --skip-rx-cop ...
CVE-2023-38403iperf3 before 3.14 allows peers to cause an integer overflow and heap ...
CVE-2016-4303The parse_string function in cjson.c in the cJSON library mishandles U ...

Security announcements

DSA / DLADescription
DLA-4032-1iperf3 - security update
DLA-3506-1iperf3 - security update
DSA-5455-1iperf3 - security update
DLA-2080-1iperf3 - security update
Search for package or bug name: Reporting problems