rpm package
suse/libpcap&distro=SUSE Linux Enterprise Server 12 SP5
pkg:rpm/suse/libpcap&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5
Vulnerabilities (4)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2024-8006 | — | < 1.8.1-10.6.1 | 1.8.1-10.6.1 | Aug 30, 2024 | Remote packet capture support is disabled by default in libpcap. When a user builds libpcap with remote packet capture support enabled, one of the functions that become available is pcap_findalldevs_ex(). One of the function arguments can be a filesystem path, which normally me | ||
| CVE-2023-7256 | — | < 1.8.1-10.6.1 | 1.8.1-10.6.1 | Aug 30, 2024 | In affected libpcap versions during the setup of a remote packet capture the internal function sock_initaddress() calls getaddrinfo() and possibly freeaddrinfo(), but does not clearly indicate to the caller function whether freeaddrinfo() still remains to be called after the func | ||
| CVE-2019-15165 | — | < 1.8.1-10.3.1 | 1.8.1-10.3.1 | Oct 3, 2019 | sf-pcapng.c in libpcap before 1.9.1 does not properly validate the PHB header length before allocating memory. | ||
| CVE-2018-16301 | — | < 1.8.1-10.3.1 | 1.8.1-10.3.1 | Oct 3, 2019 | The command-line argument parser in tcpdump before 4.99.0 has a buffer overflow in tcpdump.c:read_infile(). To trigger this vulnerability the attacker needs to create a 4GB file on the local filesystem and to specify the file name as the value of the -F command-line argument of t |
- CVE-2024-8006Aug 30, 2024affected < 1.8.1-10.6.1fixed 1.8.1-10.6.1
Remote packet capture support is disabled by default in libpcap. When a user builds libpcap with remote packet capture support enabled, one of the functions that become available is pcap_findalldevs_ex(). One of the function arguments can be a filesystem path, which normally me
- CVE-2023-7256Aug 30, 2024affected < 1.8.1-10.6.1fixed 1.8.1-10.6.1
In affected libpcap versions during the setup of a remote packet capture the internal function sock_initaddress() calls getaddrinfo() and possibly freeaddrinfo(), but does not clearly indicate to the caller function whether freeaddrinfo() still remains to be called after the func
- CVE-2019-15165Oct 3, 2019affected < 1.8.1-10.3.1fixed 1.8.1-10.3.1
sf-pcapng.c in libpcap before 1.9.1 does not properly validate the PHB header length before allocating memory.
- CVE-2018-16301Oct 3, 2019affected < 1.8.1-10.3.1fixed 1.8.1-10.3.1
The command-line argument parser in tcpdump before 4.99.0 has a buffer overflow in tcpdump.c:read_infile(). To trigger this vulnerability the attacker needs to create a 4GB file on the local filesystem and to specify the file name as the value of the -F command-line argument of t