Note:
This project will be discontinued after December 13, 2021. [more]
2017-03-15
The compile_tree function in ef_compiler.c in the Etterfilter utility in Ettercap 0.8.2 and earlier allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted filter.
Products | Ettercap |
Type | Out-of-bounds Read (CWE-125) |
First patch |
https://github.com/LocutusOfBorg/ettercap/commit/626dc56686f15f2dda13c48f78c2a666cb6d8506 |
Relevant file/s |
• ./utils/etterfilter/ef_compiler.c (modified, +3, -1)
• ./utils/etterfilter/ef_main.c (modified, +7, -2) • ./utils/etterfilter/ef_output.c (modified, +3) |
Links |
• http://www.securityfocus.com/bid/96582
• https://github.com/Ettercap/ettercap/issues/782 • http://www.securitytracker.com/id/1038057 • http://www.debian.org/security/2017/dsa-3874 • http://www.securityfocus.com/archive/1/540223/100/0/threaded |
Navigation
Patch data:
Patched area:
(on by default)
Patched area: