libpcap.so is vulnerable to code injection vulnerability. The attack is possible because it reuses a variable, causing an incorrect handling to check length values and allowing an attacker to inject extra data at the end of a request.
CPE | Name | Operator | Version |
---|---|---|---|
libpcap.so | eq | 1.9.0 |
github.com/the-tcpdump-group/libpcap/blob/libpcap-1.9/CHANGES
github.com/the-tcpdump-group/libpcap/commit/617b12c0339db4891d117b661982126c495439ea
lists.fedoraproject.org/archives/list/[email protected]/message/5P5K3DQ4TFSZBDB3XN4CZNJNQ3UIF3D3/
lists.fedoraproject.org/archives/list/[email protected]/message/GBIEKWLNIR62KZ5GA7EDXZS52HU6OE5F/
lists.fedoraproject.org/archives/list/[email protected]/message/UZTIPUWABYUE5KQOLCKAW65AUUSB7QO6/
www.tcpdump.org/public-cve-list.txt