Jump to:

CVE-2024-52949

Jump to:

CVE-2024-52949

Package iptraf-ng updated to version 1.2.2-alt1 for branch sisyphus in task 363324.

Published: 2024-12-16
Modified: 2025-10-14

CVE-2024-52949

iptraf-ng 1.2.1 has a stack-based buffer overflow. In src/ifaces.c, the strcpy function consistently fails to control the size, and it is consequently possible to overflow memory on the stack.

Severity: HIGH (7.5) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

https://github.com/iptraf-ng/iptraf-ng/releases/tag/v1.2.1
https://www.gruppotim.it/it/footer/red-team.html
https://www.gruppotim.it/it/footer/red-team.html

Version: 2.1.2

Package iptraf-ng update in sisyphus on 2024-11-25

ALT-PU-2024-16101-1

Closed vulnerabilities

CVE-2024-52949