UBUNTU-CVE-2025-11961

See a problem?
Please try reporting it to the source first.

Source

https://ubuntu.com/security/CVE-2025-11961

Import Source

https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2025/UBUNTU-CVE-2025-11961.json

JSON Data

https://api.test.osv.dev/v1/vulns/UBUNTU-CVE-2025-11961

Upstream

CVE-2025-11961

Published

2025-12-31T01:15:00Z

Modified

2026-01-20T18:52:27.476146Z

Severity

1.9 (Low) CVSS_V3 - CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:N CVSS Calculator
Ubuntu - low

Summary

[none]

Details

pcapetheraton() is an auxiliary function in libpcap, it takes a string argument and returns a fixed-size allocated buffer. The string argument must be a well-formed MAC-48 address in one of the supported formats, but this requirement has been poorly documented. If an application calls the function with an argument that deviates from the expected format, the function can read data beyond the end of the provided string and write data beyond the end of the allocated buffer.

References

Affected packages

Ubuntu:16.04:LTS

libpcap

Package

Name: libpcap
Purl: pkg:deb/ubuntu/libpcap@1.7.4-2ubuntu0.1?arch=source&distro=xenial

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.7.4-1

1.7.4-2

1.7.4-2ubuntu0.1

Ecosystem specific

{
    "binaries": [
        {
            "binary_version": "1.7.4-2ubuntu0.1",
            "binary_name": "libpcap-dev"
        },
        {
            "binary_version": "1.7.4-2ubuntu0.1",
            "binary_name": "libpcap0.8"
        },
        {
            "binary_version": "1.7.4-2ubuntu0.1",
            "binary_name": "libpcap0.8-dev"
        }
    ],
    "priority_reason": "Function not used directly by other Ubuntu packages"
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2025/UBUNTU-CVE-2025-11961.json"

Ubuntu:18.04:LTS

libpcap

Package

Name: libpcap
Purl: pkg:deb/ubuntu/libpcap@1.8.1-6ubuntu1.18.04.2?arch=source&distro=bionic

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.8.1-5ubuntu1

1.8.1-6ubuntu1

1.8.1-6ubuntu1.18.04.1

1.8.1-6ubuntu1.18.04.2

Ecosystem specific

{
    "binaries": [
        {
            "binary_version": "1.8.1-6ubuntu1.18.04.2",
            "binary_name": "libpcap-dev"
        },
        {
            "binary_version": "1.8.1-6ubuntu1.18.04.2",
            "binary_name": "libpcap0.8"
        },
        {
            "binary_version": "1.8.1-6ubuntu1.18.04.2",
            "binary_name": "libpcap0.8-dev"
        }
    ],
    "priority_reason": "Function not used directly by other Ubuntu packages"
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2025/UBUNTU-CVE-2025-11961.json"

Ubuntu:20.04:LTS

libpcap

Package

Name: libpcap
Purl: pkg:deb/ubuntu/libpcap@1.9.1-3ubuntu1.20.04.1?arch=source&distro=focal

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.9.1-2

1.9.1-3

1.9.1-3ubuntu1.20.04.1

Ecosystem specific

{
    "binaries": [
        {
            "binary_version": "1.9.1-3ubuntu1.20.04.1",
            "binary_name": "libpcap-dev"
        },
        {
            "binary_version": "1.9.1-3ubuntu1.20.04.1",
            "binary_name": "libpcap0.8"
        },
        {
            "binary_version": "1.9.1-3ubuntu1.20.04.1",
            "binary_name": "libpcap0.8-dev"
        }
    ],
    "priority_reason": "Function not used directly by other Ubuntu packages"
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2025/UBUNTU-CVE-2025-11961.json"

Ubuntu:22.04:LTS

libpcap

Package

Name: libpcap
Purl: pkg:deb/ubuntu/libpcap@1.10.1-4ubuntu1.22.04.1?arch=source&distro=jammy

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.10.0-2build1

1.10.1-4

1.10.1-4build1

1.10.1-4ubuntu1.22.04.1

Ecosystem specific

{
    "binaries": [
        {
            "binary_version": "1.10.1-4ubuntu1.22.04.1",
            "binary_name": "libpcap-dev"
        },
        {
            "binary_version": "1.10.1-4ubuntu1.22.04.1",
            "binary_name": "libpcap0.8"
        },
        {
            "binary_version": "1.10.1-4ubuntu1.22.04.1",
            "binary_name": "libpcap0.8-dev"
        }
    ],
    "priority_reason": "Function not used directly by other Ubuntu packages"
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2025/UBUNTU-CVE-2025-11961.json"

Ubuntu:24.04:LTS

libpcap

Package

Name: libpcap
Purl: pkg:deb/ubuntu/libpcap@1.10.4-4.1ubuntu3?arch=source&distro=noble

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.10.4-4

1.10.4-4ubuntu3

1.10.4-4.1ubuntu2

1.10.4-4.1ubuntu3

Ecosystem specific

{
    "binaries": [
        {
            "binary_version": "1.10.4-4.1ubuntu3",
            "binary_name": "libpcap-dev"
        },
        {
            "binary_version": "1.10.4-4.1ubuntu3",
            "binary_name": "libpcap0.8-dev"
        },
        {
            "binary_version": "1.10.4-4.1ubuntu3",
            "binary_name": "libpcap0.8t64"
        }
    ],
    "priority_reason": "Function not used directly by other Ubuntu packages"
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2025/UBUNTU-CVE-2025-11961.json"

Ubuntu:25.10

libpcap

Package

Name: libpcap
Purl: pkg:deb/ubuntu/libpcap@1.10.5-2ubuntu2?arch=source&distro=questing

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.10.5-2ubuntu1

1.10.5-2ubuntu2

Ecosystem specific

{
    "binaries": [
        {
            "binary_version": "1.10.5-2ubuntu2",
            "binary_name": "libpcap-dev"
        },
        {
            "binary_version": "1.10.5-2ubuntu2",
            "binary_name": "libpcap0.8-dev"
        },
        {
            "binary_version": "1.10.5-2ubuntu2",
            "binary_name": "libpcap0.8t64"
        }
    ],
    "priority_reason": "Function not used directly by other Ubuntu packages"
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2025/UBUNTU-CVE-2025-11961.json"

Ubuntu:Pro:14.04:LTS

libpcap

Package

Name: libpcap
Purl: pkg:deb/ubuntu/libpcap@1.5.3-2ubuntu0.1?arch=source&distro=esm-infra-legacy/trusty

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.4.0-2

1.5.1-1

1.5.2-1

1.5.3-1

1.5.3-2

1.5.3-2ubuntu0.1

Ecosystem specific

{
    "binaries": [
        {
            "binary_version": "1.5.3-2ubuntu0.1",
            "binary_name": "libpcap-dev"
        },
        {
            "binary_version": "1.5.3-2ubuntu0.1",
            "binary_name": "libpcap0.8"
        },
        {
            "binary_version": "1.5.3-2ubuntu0.1",
            "binary_name": "libpcap0.8-dev"
        }
    ],
    "priority_reason": "Function not used directly by other Ubuntu packages"
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2025/UBUNTU-CVE-2025-11961.json"