Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
slackwareSlackware Linux ProjectSSA-2024-244-01
HistoryAug 31, 2024 - 6:34 p.m.

[slackware-security] libpcap

2024-08-3118:34:53
Slackware Linux Project
www.slackware.com
6
security fix
libpcap
slackware

CVSS3

4.4

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

AI Score

7

Confidence

Low

JSON

New libpcap packages are available for Slackware 15.0 and -current to
fix security issues.

Here are the details from the Slackware 15.0 ChangeLog:

patches/packages/libpcap-1.10.5-i586-1_slack15.0.txz: Upgraded.
This update fixes security issues:
Clean up sock_initaddress() and its callers to avoid double frees
in some cases.
Fix pcap_findalldevs_ex() not to crash if passed a file:// URL with a
path to a directory that cannot be opened.
For more information, see:
https://vulners.com/cve/CVE-2023-7256
https://vulners.com/cve/CVE-2024-8006
(* Security fix *)

Where to find the new packages:

Thanks to the friendly folks at the OSU Open Source Lab
(http://osuosl.org) for donating FTP and rsync hosting
to the Slackware project! :-)

Also see the “Get Slack” section on http://slackware.com for
additional mirror sites near you.

Updated package for Slackware 15.0:
ftp://ftp.slackware.com/pub/slackware/slackware-15.0/patches/packages/libpcap-1.10.5-i586-1_slack15.0.txz

Updated package for Slackware x86_64 15.0:
ftp://ftp.slackware.com/pub/slackware/slackware64-15.0/patches/packages/libpcap-1.10.5-x86_64-1_slack15.0.txz

Updated package for Slackware -current:
ftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/l/libpcap-1.10.5-i686-1.txz

Updated package for Slackware x86_64 -current:
ftp://ftp.slackware.com/pub/slackware/slackware64-current/slackware64/l/libpcap-1.10.5-x86_64-1.txz

MD5 signatures:

Slackware 15.0 package:
293031b602d63cc1d28a4bf833d15a29 libpcap-1.10.5-i586-1_slack15.0.txz

Slackware x86_64 15.0 package:
bc1f59d938e9b707c84ec26bbe33940a libpcap-1.10.5-x86_64-1_slack15.0.txz

Slackware -current package:
a52f1a8064892102cb7b5038c00ff35b l/libpcap-1.10.5-i686-1.txz

Slackware x86_64 -current package:
d789bc6867690cb1ab76212e68a0c159 l/libpcap-1.10.5-x86_64-1.txz

Installation instructions:

Upgrade the package as root:
> upgradepkg libpcap-1.10.5-i586-1_slack15.0.txz

Related

osv 5
nessus 3
mageia 1
openvas 2
debiancve 2
vulnrichment 2
ubuntucve 2
cvelist 2
nvd 2
cve 2
redhatcve 2
alpinelinux 2
redos 2
osv
osv
Security update for libpcap
2024-09-11 15:39:32
Security update for libpcap
2024-09-12 11:06:09
libpcap-devel-1.10.5-1.1 on GA media
2024-09-04 00:00:00
nessus
nessus
Slackware Linux 15.0 / current libpcap Multiple Vulnerabilities (SSA:2024-244-01)
2024-08-31 00:00:00
SUSE SLED15 / SLES15 / openSUSE 15 Security Update : libpcap (SUSE-SU-2024:3210-1)
2024-09-12 00:00:00
SUSE SLED15 / SLES15 / openSUSE 15 Security Update : libpcap (SUSE-SU-2024:3217-1)
2024-09-13 00:00:00
mageia
mageia
Updated libpcap packages fix security vulnerabilities
2024-09-11 23:42:44
openvas
openvas
Mageia: Security Advisory (MGASA-2024-0295)
2024-09-12 00:00:00
Slackware: Security Advisory (SSA:2024-244-01)
2024-09-02 00:00:00
debiancve
debiancve
CVE-2024-8006
2024-08-31 00:15:05
CVE-2023-7256
2024-08-31 00:15:05
vulnrichment
vulnrichment
CVE-2024-8006 NULL pointer dereference in libpcap before 1.10.5 with remote packet capture support
2024-08-30 23:53:11
CVE-2023-7256 Double-free in libpcap before 1.10.5 with remote packet capture support.
2024-08-30 23:44:04
ubuntucve
ubuntucve
CVE-2024-8006
2024-09-03 00:00:00
CVE-2023-7256
2024-09-03 00:00:00
cvelist
cvelist
CVE-2024-8006 NULL pointer dereference in libpcap before 1.10.5 with remote packet capture support
2024-08-30 23:53:11
CVE-2023-7256 Double-free in libpcap before 1.10.5 with remote packet capture support.
2024-08-30 23:44:04
nvd
nvd
CVE-2024-8006
2024-08-31 00:15:05
CVE-2023-7256
2024-08-31 00:15:05
cve
cve
CVE-2024-8006
2024-08-31 00:15:05
CVE-2023-7256
2024-08-31 00:15:05
redhatcve
redhatcve
CVE-2024-8006
2024-09-02 06:40:52
CVE-2023-7256
2024-09-02 06:40:42
alpinelinux
alpinelinux
CVE-2024-8006
2024-08-31 00:15:05
CVE-2023-7256
2024-08-31 00:15:05
redos
redos
ROS-20240910-04
2024-09-10 00:00:00
ROS-20240918-11
2024-09-18 00:00:00

CVSS3

4.4

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

AI Score

7

Confidence

Low

JSON
Related for SSA-2024-244-01
osv5nessus3mageia1openvas2debiancve2vulnrichment2ubuntucve2cvelist2nvd2cve2redhatcve2alpinelinux2redos2