1.2.0

CVSS 9.8 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

tcpdump

critical

NVD

Published: 2017-10-20

Updated: 2023-11-07

Summary

pcap-linux.c in libpcap 1.1.1 before commit ea9432fabdf4b33cbc76d9437200e028f1c47c93 when snaplen is set may truncate packets, which might allow remote attackers to send arbitrary data while avoiding detection via crafted packets.

Vulnerable Configurations

Part	Description	Count
Application	Tcpdump Tcpdump Libpcap 1.1.1 Tcpdump Libpcap 1.2.0	2

References

https://security-tracker.debian.org/tracker/CVE-2011-1935/
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=623868
http://www.openwall.com/lists/oss-security/2014/02/08/5
http://www.openwall.com/lists/oss-security/2011/05/19/11
http://thread.gmane.org/gmane.network.tcpdump.devel/5018
http://article.gmane.org/gmane.network.tcpdump.devel/4968
https://bugs.debian.org/cgi-bin/bugreport.cgi?att=1%3Bbug=623868%3Bfilename=0001-Fix-the-calculation-of-the-frame-size-in-memory-mapp.patch%3Bmsg=10