CVE-2024-2397
Published: 12 April 2024
Due to a bug in packet data buffers management, the PPP printer in tcpdump can enter an infinite loop when reading a crafted DLT_PPP_SERIAL .pcap savefile. This problem does not affect any tcpdump release, but it affected the git master branch from 2023-06-05 to 2024-03-21.
Notes
| Author | Note |
|---|---|
| mdeslaur | only affected the master branch, not packages in Ubuntu |
Priority
Status
| Package | Release | Status |
|---|---|---|
|
tcpdump Launchpad, Ubuntu, Debian |
bionic |
Not vulnerable
|
| focal |
Not vulnerable
|
|
| jammy |
Not vulnerable
|
|
| mantic |
Not vulnerable
|
|
| noble |
Not vulnerable
|
|
| trusty |
Not vulnerable
|
|
| upstream |
Not vulnerable
(debian: Vulnerable code not present in any version uploaded to Debian)
|
|
| xenial |
Not vulnerable
|