CVE-2011-1935 — CRITICAL (9.8)

Q: How severe is CVE-2011-1935?

CVE-2011-1935 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.

Q: Is there a patch for CVE-2011-1935?

Check the references section above for vendor advisories and patch information. Affected products include: Tcpdump Libpcap.

Vulnerability Description

pcap-linux.c in libpcap 1.1.1 before commit ea9432fabdf4b33cbc76d9437200e028f1c47c93 when snaplen is set may truncate packets, which might allow remote attackers to send arbitrary data while avoiding detection via crafted packets.

CVSS Score

9.8

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Tcpdump	Libpcap	>= 1.1.1, < 1.2.1

References

http://article.gmane.org/gmane.network.tcpdump.devel/4968Broken LinkIssue TrackingThird Party Advisory
http://thread.gmane.org/gmane.network.tcpdump.devel/5018Broken LinkIssue TrackingPatch
http://www.openwall.com/lists/oss-security/2011/05/19/11Broken LinkIssue TrackingMailing List
http://www.openwall.com/lists/oss-security/2014/02/08/5Mailing ListThird Party Advisory
https://bugs.debian.org/cgi-bin/bugreport.cgi?att=1%3Bbug=623868%3Bfilename=0001
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=623868Issue TrackingPatchThird Party Advisory
https://security-tracker.debian.org/tracker/CVE-2011-1935/Issue TrackingThird Party Advisory
http://article.gmane.org/gmane.network.tcpdump.devel/4968Broken LinkIssue TrackingThird Party Advisory
http://thread.gmane.org/gmane.network.tcpdump.devel/5018Broken LinkIssue TrackingPatch
http://www.openwall.com/lists/oss-security/2011/05/19/11Broken LinkIssue TrackingMailing List
http://www.openwall.com/lists/oss-security/2014/02/08/5Mailing ListThird Party Advisory
https://bugs.debian.org/cgi-bin/bugreport.cgi?att=1%3Bbug=623868%3Bfilename=0001
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=623868Issue TrackingPatchThird Party Advisory
https://security-tracker.debian.org/tracker/CVE-2011-1935/Issue TrackingThird Party Advisory

FAQ

What is CVE-2011-1935?

CVE-2011-1935 is a vulnerability with a CVSS score of 9.8 (CRITICAL). pcap-linux.c in libpcap 1.1.1 before commit ea9432fabdf4b33cbc76d9437200e028f1c47c93 when snaplen is set may truncate packets, which might allow remote attackers to send arbitrary data while avoiding ...

How severe is CVE-2011-1935?

CVE-2011-1935 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.

Is there a patch for CVE-2011-1935?

Check the references section above for vendor advisories and patch information. Affected products include: Tcpdump Libpcap.