CVE-2019-15161

Опубликовано: 03 окт. 2019

Источник: debian

Описание

rpcapd/daemon.c in libpcap before 1.9.1 mishandles certain length values because of reuse of a variable. This may open up an attack vector involving extra data at the end of a request.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
libpcap	fixed	1.9.1-1		package
libpcap	not-affected		buster	package
libpcap	not-affected		stretch	package
libpcap	not-affected		jessie	package

Примечания

https://github.com/the-tcpdump-group/libpcap/commit/617b12c0339db4891d117b661982126c495439ea
rpcapd not built in Debian.

Связанные уязвимости

CVE-2019-15161

CVSS3: 5.3

ubuntu

больше 6 лет назад

rpcapd/daemon.c in libpcap before 1.9.1 mishandles certain length values because of reuse of a variable. This may open up an attack vector involving extra data at the end of a request.

CVE-2019-15161

CVSS3: 5.3

redhat

больше 6 лет назад

rpcapd/daemon.c in libpcap before 1.9.1 mishandles certain length values because of reuse of a variable. This may open up an attack vector involving extra data at the end of a request.

CVE-2019-15161

CVSS3: 5.3

nvd

больше 6 лет назад

rpcapd/daemon.c in libpcap before 1.9.1 mishandles certain length values because of reuse of a variable. This may open up an attack vector involving extra data at the end of a request.

GHSA-mpx8-phwc-v8wq

github

больше 3 лет назад

rpcapd/daemon.c in libpcap before 1.9.1 mishandles certain length values because of reuse of a variable. This may open up an attack vector involving extra data at the end of a request.