CVE-2021-32286

NameCVE-2021-32286
DescriptionAn issue was discovered in hcxtools through 6.1.6. A global-buffer-overflow exists in the function pcapngoptionwalk located in hcxpcapngtool.c. It allows an attacker to cause code Execution.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, bugtraq, EDB, Metasploit, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, Mageia, GitHub code/issues, web search, more)
NVD severitymedium
Debian Bugs994790

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
hcxtools (PTS)bookworm, bullseye, sid6.0.2-1vulnerable

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
hcxtoolssource(unstable)(unfixed)994790

Notes

[bullseye] - hcxtools <no-dsa> (Minor issue)
https://github.com/ZerBea/hcxtools/issues/155
https://github.com/ZerBea/hcxtools/commit/e6505ddc262bc3254b39844895ebac70861001d2 (6.1.2)

Search for package or bug name: Reporting problems