Bug 2308783 (CVE-2023-7256) - CVE-2023-7256 libpcap: Double Free in libcap
Summary: CVE-2023-7256 libpcap: Double Free in libcap
Keywords:
Status: NEW
Alias: CVE-2023-7256
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
medium
medium
Target Milestone: ---
Assignee: Product Security DevOps Team
QA Contact:
URL:
Whiteboard:
Depends On: 2308976 2308977
Blocks:
TreeView+ depends on / blocked
 
Reported: 2024-08-31 00:20 UTC by OSIDB Bzimport
Modified: 2024-09-10 16:25 UTC (History)
2 users (show)

Fixed In Version:
Doc Type: If docs needed, set a value
Doc Text:
A vulnerability was found in libpcap. During the setup of a remote packet capture, the internal sock_initaddress() function calls getaddrinfo() and possibly freeaddrinfo(), but does not clearly indicate to the caller function as to whether freeaddrinfo() remains to be called after the function returns.  This issue makes it possible in some scenarios that the function and its caller call freeaddrinfo() for the same allocated memory block.
Clone Of:
Environment:
Last Closed:
Embargoed:


Attachments (Terms of Use)

Description OSIDB Bzimport 2024-08-31 00:20:56 UTC
In affected libpcap versions during the setup of a remote packet capture the internal function sock_initaddress() calls getaddrinfo() and possibly freeaddrinfo(), but does not clearly indicate to the caller function whether freeaddrinfo() still remains to be called after the function returns.  This makes it possible in some scenarios that both the function and its caller call freeaddrinfo() for the same allocated memory block.  A similar problem was reported in Apple libpcap, to which Apple assigned CVE-2023-40400.

Comment 2 Carlos Rodriguez-Fernandez 2024-09-02 20:03:50 UTC
libcap 2.48, 2.69, or 2.170 doesn't have "sock_initaddress".

Also the OSIDB import refers to libpcap ("p" in the middle). A different library

Comment 3 Carlos Rodriguez-Fernandez 2024-09-02 20:12:19 UTC
You created the issue for libcap, but I think you meant libpcap: https://src.fedoraproject.org/rpms/libpcap


Note You need to log in before you can comment on or make changes to this bug.