Import Source
https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-54386.json
JSON Data
https://api.osv.dev/v1/vulns/AZL-54386
Upstream
Published
2024-12-16T22:15:06Z
Modified
2026-04-21T04:35:34.290550Z
Summary
CVE-2024-52949 affecting package iptraf-ng for versions less than 1.2.2-1
Details

iptraf-ng 1.2.1 has a stack-based buffer overflow. In src/ifaces.c, the strcpy function consistently fails to control the size, and it is consequently possible to overflow memory on the stack.

References

Affected packages

Azure Linux:3 / iptraf-ng

Package

Name
iptraf-ng
Purl
pkg:rpm/azure-linux/iptraf-ng

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.2.2-1

Database specific

source
"https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-54386.json"