Low severity1.9OSV Advisory· Published Dec 31, 2025· Updated Apr 15, 2026
CVE-2025-11961
CVE-2025-11961
Description
pcap_ether_aton() is an auxiliary function in libpcap, it takes a string argument and returns a fixed-size allocated buffer. The string argument must be a well-formed MAC-48 address in one of the supported formats, but this requirement has been poorly documented. If an application calls the function with an argument that deviates from the expected format, the function can read data beyond the end of the provided string and write data beyond the end of the allocated buffer.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
17- osv-coords15 versionspkg:rpm/opensuse/libpcap&distro=openSUSE%20Leap%2015.6pkg:rpm/opensuse/libpcap&distro=openSUSE%20Leap%2016.0pkg:rpm/opensuse/libpcap&distro=openSUSE%20Tumbleweedpkg:rpm/suse/libpcap&distro=SUSE%20Linux%20Enterprise%20Micro%205.2pkg:rpm/suse/libpcap&distro=SUSE%20Linux%20Enterprise%20Micro%205.3pkg:rpm/suse/libpcap&distro=SUSE%20Linux%20Enterprise%20Micro%205.4pkg:rpm/suse/libpcap&distro=SUSE%20Linux%20Enterprise%20Micro%205.5pkg:rpm/suse/libpcap&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP7pkg:rpm/suse/libpcap&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP7pkg:rpm/suse/libpcap&distro=SUSE%20Linux%20Enterprise%20Server%2016.0pkg:rpm/suse/libpcap&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20applications%2016.0pkg:rpm/suse/libpcap&distro=SUSE%20Linux%20Enterprise%20Server%20LTSS%20Extended%20Security%2012%20SP5pkg:rpm/suse/libpcap&distro=SUSE%20Linux%20Micro%206.0pkg:rpm/suse/libpcap&distro=SUSE%20Linux%20Micro%206.1pkg:rpm/suse/libpcap&distro=SUSE%20Linux%20Micro%206.2
< 1.10.4-150600.3.9.1+ 14 more
- (no CPE)range: < 1.10.4-150600.3.9.1
- (no CPE)range: < 1.10.5-160000.4.1
- (no CPE)range: < 1.10.6-1.1
- (no CPE)range: < 1.9.1-150300.3.6.1
- (no CPE)range: < 1.10.1-150400.3.9.1
- (no CPE)range: < 1.10.1-150400.3.9.1
- (no CPE)range: < 1.10.1-150400.3.9.1
- (no CPE)range: < 1.10.5-150700.3.7.1
- (no CPE)range: < 1.10.5-150700.3.7.1
- (no CPE)range: < 1.10.5-160000.4.1
- (no CPE)range: < 1.10.5-160000.4.1
- (no CPE)range: < 1.8.1-10.9.1
- (no CPE)range: < 1.10.4-4.1
- (no CPE)range: < 1.10.4-slfo.1.1_2.1
- (no CPE)range: < 1.10.5-160000.4.1
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.