CVE-2025-11964Out-of-bounds Write in Tcpdump Group Libpcap

CWE-787Out-of-bounds WriteCWE-476NULL Pointer Dereference10 documents8 sources
Severity
1.9LOWNVD
EPSS
0.0%
top 95.96%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
THE Tcpdump Group Libpcap
Timeline
PublishedDec 31
Latest updateJan 14

Description

On Windows only, if libpcap needs to convert a Windows error message to UTF-8 and the message includes characters that UTF-8 represents using 4 bytes, utf_16le_to_utf_8_truncated() can write data beyond the end of the provided buffer.

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:NExploitability: 0.5 | Impact: 1.4

Affected Packages1 packages

CVEListV5the_tcpdump_group/libpcap1.10.01.10.6

🔴Vulnerability Details

4
OSV
tracing: Do not register unsupported perf events2026-01-14
OSV
CVE-2025-11964: On Windows only, if libpcap needs to convert a Windows error message to UTF-8 and the message includes characters that UTF-8 represents using 4 bytes,2026-01-02
GHSA
GHSA-53h7-g6w8-rxxc: On Windows only, if libpcap needs to convert a Windows error message to UTF-8 and the message includes characters that UTF-8 represents using 4 bytes,2025-12-31
CVEList
OOBW in utf_16le_to_utf_8_truncated() in libpcap2025-12-31

📋Vendor Advisories

3
Red Hat
libpcap: libpcap: Data corruption via out-of-bounds write on Windows2025-12-31
Microsoft
OOBW in utf_16le_to_utf_8_truncated() in libpcap2025-12-09
Debian
CVE-2025-11964: libpcap - On Windows only, if libpcap needs to convert a Windows error message to UTF-8 an...2025
CVE-2025-11964 — Out-of-bounds Write | cvebase