UBUNTU-CVE-2023-7256

See a problem?

Source

https://ubuntu.com/security/notices/UBUNTU-CVE-2023-7256

Import Source

https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2023/UBUNTU-CVE-2023-7256.json

JSON Data

https://api.osv.dev/v1/vulns/UBUNTU-CVE-2023-7256

Related

CVE-2023-7256

Published

2024-08-31T00:15:00Z

Modified

2024-08-31T00:15:00Z

Summary

[none]

Details

In affected libpcap versions during the setup of a remote packet capture the internal function sock_initaddress() calls getaddrinfo() and possibly freeaddrinfo(), but does not clearly indicate to the caller function whether freeaddrinfo() still remains to be called after the function returns. This makes it possible in some scenarios that both the function and its caller call freeaddrinfo() for the same allocated memory block. A similar problem was reported in Apple libpcap, to which Apple assigned CVE-2023-40400.

References

Affected packages

Ubuntu:Pro:14.04:LTS / libpcap

Package

Name: libpcap

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.4.0-2

1.5.1-1

1.5.2-1

1.5.3-1

1.5.3-2

1.5.3-2ubuntu0.1

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:Pro:16.04:LTS / libpcap

Package

Name: libpcap

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.7.4-1

1.7.4-2

1.7.4-2ubuntu0.1

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:Pro:18.04:LTS / libpcap

Package

Name: libpcap

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.8.1-5ubuntu1

1.8.1-6ubuntu1

1.8.1-6ubuntu1.18.04.1

1.8.1-6ubuntu1.18.04.2

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:20.04:LTS / libpcap

Package

Name: libpcap

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.9.1-2

1.9.1-3

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:22.04:LTS / libpcap

Package

Name: libpcap

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.10.0-2build1

1.10.1-4

1.10.1-4build1

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:24.04:LTS / libpcap

Package

Name: libpcap

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.10.4-4

1.10.4-4ubuntu3

1.10.4-4.1ubuntu2

1.10.4-4.1ubuntu3

Ecosystem specific

{
    "ubuntu_priority": "medium"
}