CVE-2023-7256

2024-08-3100:15:05

Alpine Linux Development Team

security.alpinelinux.org

libpcap

vulnerability

double free

remote packet capture

memory issue

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

6.7

Confidence

Low

JSON

In affected libpcap versions during the setup of a remote packet capture the internal function sock_initaddress() calls getaddrinfo() and possibly freeaddrinfo(), but does not clearly indicate to the caller function whether freeaddrinfo() still remains to be called after the function returns. This makes it possible in some scenarios that both the function and its caller call freeaddrinfo() for the same allocated memory block. A similar problem was reported in Apple libpcap, to which Apple assigned CVE-2023-40400.

OSVersionArchitecturePackageVersionFilename
Alpine3.20-mainnoarchlibpcap= 1.10.4-r1UNKNOWN
Alpine3.19-mainnoarchlibpcap= 1.10.4-r1UNKNOWN
Alpine3.18-mainnoarchlibpcap= 1.10.4-r1UNKNOWN
Alpine3.17-mainnoarchlibpcap= 1.10.1-r1UNKNOWN

OS	Version	Architecture	Package	Version	Filename
Alpine	3.20-main	noarch	libpcap	= 1.10.4-r1	UNKNOWN
Alpine	3.19-main	noarch	libpcap	= 1.10.4-r1	UNKNOWN
Alpine	3.18-main	noarch	libpcap	= 1.10.4-r1	UNKNOWN
Alpine	3.17-main	noarch	libpcap	= 1.10.1-r1	UNKNOWN