CVE-2023-7256
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2023-7256
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-7256.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2023-7256
- Downstream
- Related
- Published
- 2024-08-31T00:15:05Z
- Modified
- 2025-10-21T17:20:57.746402Z
- Severity
-
- 4.4 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- [none]
- Details
-
In affected libpcap versions during the setup of a remote packet capture the internal function sock_initaddress() calls getaddrinfo() and possibly freeaddrinfo(), but does not clearly indicate to the caller function whether freeaddrinfo() still remains to be called after the function returns. This makes it possible in some scenarios that both the function and its caller call freeaddrinfo() for the same allocated memory block. A similar problem was reported in Apple libpcap, to which Apple assigned CVE-2023-40400.
- References
Affected packages
Git / github.com/the-tcpdump-group/libpcap
Affected ranges
- Type
- GIT
- Repo
- https://github.com/the-tcpdump-group/libpcap
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixedFixed
Affected versions
libpcap-0.*
libpcap-0.6.1
libpcap-0.7.1
libpcap-0.8-bp
libpcap-1.*
libpcap-1.10-bp
libpcap-1.10.0
libpcap-1.10.1
libpcap-1.10.2
libpcap-1.10.3
libpcap-1.10.4
libpcap-1.3-bp
libpcap-1.5.0
libpcap-1.6.0-bp
libpcap-1.7.0-bp
libpcap-1.8.0-bp
libpcap-1.8.1
libpcap-1.9-bp
libpcap-1.9.0-rc1
Database specific
vanir_signatures
[
{
"signature_version": "v1",
"deprecated": false,
"target": {
"function": "pcap_remoteact_accept_ex",
"file": "pcap-rpcap.c"
},
"digest": {
"function_hash": "180950434210636172019406624966677301541",
"length": 3167.0
},
"source": "https://github.com/the-tcpdump-group/libpcap/commit/262e4f34979872d822ccedf9f318ed89c4d31c03",
"signature_type": "Function",
"id": "CVE-2023-7256-0f073b67"
},
{
"signature_version": "v1",
"deprecated": false,
"target": {
"function": "sock_initaddress",
"file": "sockutils.c"
},
"digest": {
"function_hash": "162606020789796940836100380088400464420",
"length": 1116.0
},
"source": "https://github.com/the-tcpdump-group/libpcap/commit/262e4f34979872d822ccedf9f318ed89c4d31c03",
"signature_type": "Function",
"id": "CVE-2023-7256-1c459b4e"
},
{
"signature_version": "v1",
"deprecated": false,
"target": {
"function": "rpcap_setup_session",
"file": "pcap-rpcap.c"
},
"digest": {
"function_hash": "324575842005163651107508107720461692211",
"length": 2258.0
},
"source": "https://github.com/the-tcpdump-group/libpcap/commit/262e4f34979872d822ccedf9f318ed89c4d31c03",
"signature_type": "Function",
"id": "CVE-2023-7256-1fe630c2"
},
{
"signature_version": "v1",
"deprecated": false,
"target": {
"file": "sockutils.h"
},
"digest": {
"line_hashes": [
"75190953914330873323926907740891755660",
"14352995463127410912902693749693286023",
"236868071845397311632662984117425940269",
"2638092432383675996988504178781360694",
"138806177979328857712750678439769025293",
"22530660277406728632807627570077520646"
],
"threshold": 0.9
},
"source": "https://github.com/the-tcpdump-group/libpcap/commit/2aa69b04d8173b18a0e3492e0c8f2f7fabdf642d",
"signature_type": "Line",
"id": "CVE-2023-7256-206736c3"
},
{
"signature_version": "v1",
"deprecated": false,
"target": {
"function": "sock_initaddress",
"file": "sockutils.c"
},
"digest": {
"function_hash": "162606020789796940836100380088400464420",
"length": 1116.0
},
"source": "https://github.com/the-tcpdump-group/libpcap/commit/2aa69b04d8173b18a0e3492e0c8f2f7fabdf642d",
"signature_type": "Function",
"id": "CVE-2023-7256-27687317"
},
{
"signature_version": "v1",
"deprecated": false,
"target": {
"file": "rpcapd/rpcapd.c"
},
"digest": {
"line_hashes": [
"299073472990556940263814455399948761819",
"77397221732186759689620203591955802467",
"193305666113005937048266835069217442300",
"240357797822588419587602546478904266173",
"303935280217442278952566959670961526185",
"140469659254049531854199258221510904027",
"99804645508317863272422580059760593840",
"9790838195332726480889476766949319298"
],
"threshold": 0.9
},
"source": "https://github.com/the-tcpdump-group/libpcap/commit/262e4f34979872d822ccedf9f318ed89c4d31c03",
"signature_type": "Line",
"id": "CVE-2023-7256-2dbc9736"
},
{
"signature_version": "v1",
"deprecated": false,
"target": {
"file": "pcap-rpcap.c"
},
"digest": {
"line_hashes": [
"40669374690502538470315743841168077894",
"63819124300106168761914819477403112688",
"1165856592343266696747989236980703837",
"5882308988677858096832039231294838579",
"121835889193753465365796499450594072279",
"146841660788929940903850314216057369195",
"84160832503013027552727355963486146502",
"216775884614168279208998562978211320558",
"242812913729751748712461509451191702070",
"59984086340925470357619558821180492777",
"235739287242916627928669765113863249271",
"235799377420646169233886836838207505100",
"169783037548893509844193108380157611388",
"231407221747797562654054623494960753584",
"173198073671297191333369825131963447874",
"272976691289590986950020890092192089435",
"175244527391768110580217141935661533553",
"136489301541010121082365022497382862098",
"295273163032830094100420528501623789267",
"138819165106324143708108057862446145194",
"310756738092252218395417459252740876656",
"266069833265693673160322311920350360499",
"321730234753682973014669837210331215318",
"29967682514893632970498422524427534288",
"111788505975074833933080464245044084249",
"12744630514991639690802671834911213085",
"101133754547179744875403574571356944946",
"279618488485498743178083254180323010984",
"207241277244122347552970822807913054032",
"101305225020058452712756845132455923039",
"69545744282213546708361330851550967229",
"155632014794621761856527475023983852573",
"200687575031491658230696937800598055797",
"332270070096588397410906673401619536741",
"69945538608591519591221648182531514448",
"271262699451746042307904184415742942326",
"193445390001593151206132881931735368467",
"333074141710635353878506192750459148821",
"167315427331382631870498555401817833989",
"102872031256158234299409398720193970722",
"193543545118401208980849436783300410491",
"213459757548120950915255620256655570646",
"271262699451746042307904184415742942326",
"63513406422064069600407402280999067491",
"255194140331966874866520717026704477267",
"218144472623656190596253477206242361238",
"139418139963891272965905281796335700012",
"291357597897183521787533139415906428132",
"98449790716217602801590487465367070713",
"310873983526312249262844356517217448269",
"121835889193753465365796499450594072279",
"146841660788929940903850314216057369195",
"84160832503013027552727355963486146502",
"216775884614168279208998562978211320558",
"71007502626013954253372218268707169287",
"231788259964399913793399591875295946886"
],
"threshold": 0.9
},
"source": "https://github.com/the-tcpdump-group/libpcap/commit/262e4f34979872d822ccedf9f318ed89c4d31c03",
"signature_type": "Line",
"id": "CVE-2023-7256-3af14956"
},
{
"signature_version": "v1",
"deprecated": false,
"target": {
"function": "rpcap_remoteact_getsock",
"file": "pcap-rpcap.c"
},
"digest": {
"function_hash": "14982502768147248478340606297026746275",
"length": 667.0
},
"source": "https://github.com/the-tcpdump-group/libpcap/commit/262e4f34979872d822ccedf9f318ed89c4d31c03",
"signature_type": "Function",
"id": "CVE-2023-7256-4d59780f"
},
{
"signature_version": "v1",
"deprecated": false,
"target": {
"function": "pcap_remoteact_close",
"file": "pcap-rpcap.c"
},
"digest": {
"function_hash": "87188957415123731462782439807507789829",
"length": 1391.0
},
"source": "https://github.com/the-tcpdump-group/libpcap/commit/262e4f34979872d822ccedf9f318ed89c4d31c03",
"signature_type": "Function",
"id": "CVE-2023-7256-5390f3c3"
},
{
"signature_version": "v1",
"deprecated": false,
"target": {
"function": "pcap_remoteact_accept_ex",
"file": "pcap-rpcap.c"
},
"digest": {
"function_hash": "180950434210636172019406624966677301541",
"length": 3167.0
},
"source": "https://github.com/the-tcpdump-group/libpcap/commit/2aa69b04d8173b18a0e3492e0c8f2f7fabdf642d",
"signature_type": "Function",
"id": "CVE-2023-7256-6cf55ceb"
},
{
"signature_version": "v1",
"deprecated": false,
"target": {
"file": "sockutils.h"
},
"digest": {
"line_hashes": [
"75190953914330873323926907740891755660",
"14352995463127410912902693749693286023",
"236868071845397311632662984117425940269",
"2638092432383675996988504178781360694",
"138806177979328857712750678439769025293",
"22530660277406728632807627570077520646"
],
"threshold": 0.9
},
"source": "https://github.com/the-tcpdump-group/libpcap/commit/262e4f34979872d822ccedf9f318ed89c4d31c03",
"signature_type": "Line",
"id": "CVE-2023-7256-6d8c6941"
},
{
"signature_version": "v1",
"deprecated": false,
"target": {
"file": "sockutils.c"
},
"digest": {
"line_hashes": [
"53186758510562065052829121628281234225",
"22385412585003582675352389821877280450",
"104677171215107127104510899854173653330",
"148544528429452445770088812234585691375",
"228637810615236140491270436805372761056",
"166588014089009217865034259150037561834",
"201622448501740394068225061701729331769",
"25344465509560814473455385952969568500",
"156199164266791838620503006341795499736",
"247000023714476308021105080260885976067",
"163396120961968569133921018478306583244",
"257395416551951904253182964971416199115",
"309745985459800759369295673487519894475",
"85214213511955834863079988696494116559",
"74453412570778478441971047107790593256",
"117457446029391252998461207072562262338",
"76141739057574756296817500854216228164",
"317323787122640855529598671997307332873",
"133625945709424717948202930411233808166",
"153043827272302636969884089773944710454",
"201224834420235997478342070620735572669",
"241018611647907728653196606098616056849",
"185840068427074688236288624445556764566",
"317229912949292601170900528718825956070",
"143121139624474137479755660008422789602",
"198372105430118894364684899077895616020",
"136420754758955219446576016120895544905",
"203331422706745239990268018936941558818",
"324639434604197486185149951189577860570",
"119119192188320254523528207273252818317",
"60111422188117259949987673654394786613",
"322599817951707994132297128283509316250",
"239964616105489509602063892978473933814",
"98198641377776421780936148002132385211",
"8623320778037871464485036576428400322",
"235390142618435792354481801846339407701",
"251487702364174914628928740798221064994",
"913641848789658579602351921985854640",
"79239158957977101432931120765867852017",
"90969234854376344536515428010312480344",
"312368653794558998568165718788278203627",
"232009245695055290217083011299876492012",
"98198641377776421780936148002132385211",
"142831637580257773315009956899295965699",
"297295444819886776360825326696600298970",
"239223146008692130711891686243032160499",
"223364753542271970748195450079387879989",
"259240297013894798628000417485695258645",
"228336537724215608033599619638575582701",
"105215930898953609465188264936638087865",
"201641516034210167861696953571418931544"
],
"threshold": 0.9
},
"source": "https://github.com/the-tcpdump-group/libpcap/commit/2aa69b04d8173b18a0e3492e0c8f2f7fabdf642d",
"signature_type": "Line",
"id": "CVE-2023-7256-730de5fa"
},
{
"signature_version": "v1",
"deprecated": false,
"target": {
"function": "pcap_startcapture_remote",
"file": "pcap-rpcap.c"
},
"digest": {
"function_hash": "22775793223559657460746774671713044068",
"length": 6706.0
},
"source": "https://github.com/the-tcpdump-group/libpcap/commit/262e4f34979872d822ccedf9f318ed89c4d31c03",
"signature_type": "Function",
"id": "CVE-2023-7256-7d169437"
},
{
"signature_version": "v1",
"deprecated": false,
"target": {
"function": "rpcap_setup_session",
"file": "pcap-rpcap.c"
},
"digest": {
"function_hash": "279148327437281174773923883173333646114",
"length": 2069.0
},
"source": "https://github.com/the-tcpdump-group/libpcap/commit/2aa69b04d8173b18a0e3492e0c8f2f7fabdf642d",
"signature_type": "Function",
"id": "CVE-2023-7256-8211458e"
},
{
"signature_version": "v1",
"deprecated": false,
"target": {
"file": "rpcapd/daemon.c"
},
"digest": {
"line_hashes": [
"201325277381262734079885603825964662935",
"125549774896002563285468999156603526744",
"113406317483334482414441923455104004763",
"19281383305612166608192579386127428651",
"4480854007149821220900007235811708420",
"251086410640534922589111707708604766652",
"67596935483358720017472045018488274001",
"40197942359087066506933502821424301660"
],
"threshold": 0.9
},
"source": "https://github.com/the-tcpdump-group/libpcap/commit/2aa69b04d8173b18a0e3492e0c8f2f7fabdf642d",
"signature_type": "Line",
"id": "CVE-2023-7256-86ae1cb1"
},
{
"signature_version": "v1",
"deprecated": false,
"target": {
"file": "rpcapd/rpcapd.c"
},
"digest": {
"line_hashes": [
"299073472990556940263814455399948761819",
"77397221732186759689620203591955802467",
"193305666113005937048266835069217442300",
"240357797822588419587602546478904266173",
"303935280217442278952566959670961526185",
"140469659254049531854199258221510904027",
"99804645508317863272422580059760593840",
"9790838195332726480889476766949319298"
],
"threshold": 0.9
},
"source": "https://github.com/the-tcpdump-group/libpcap/commit/2aa69b04d8173b18a0e3492e0c8f2f7fabdf642d",
"signature_type": "Line",
"id": "CVE-2023-7256-8f3681a4"
},
{
"signature_version": "v1",
"deprecated": false,
"target": {
"function": "sock_present2network",
"file": "sockutils.c"
},
"digest": {
"function_hash": "35650229396765440061147643765128059692",
"length": 641.0
},
"source": "https://github.com/the-tcpdump-group/libpcap/commit/2aa69b04d8173b18a0e3492e0c8f2f7fabdf642d",
"signature_type": "Function",
"id": "CVE-2023-7256-90f6fc8e"
},
{
"signature_version": "v1",
"deprecated": false,
"target": {
"function": "main_startup",
"file": "rpcapd/rpcapd.c"
},
"digest": {
"function_hash": "85131676763586344772035155888922401932",
"length": 2374.0
},
"source": "https://github.com/the-tcpdump-group/libpcap/commit/262e4f34979872d822ccedf9f318ed89c4d31c03",
"signature_type": "Function",
"id": "CVE-2023-7256-9723a735"
},
{
"signature_version": "v1",
"deprecated": false,
"target": {
"file": "rpcapd/daemon.c"
},
"digest": {
"line_hashes": [
"201325277381262734079885603825964662935",
"125549774896002563285468999156603526744",
"113406317483334482414441923455104004763",
"19281383305612166608192579386127428651",
"176994982331046718065296531095049712051",
"233767848582011848625685293374708328406",
"146542164474248131915595996121183338162",
"84360274555131086174603583692817948647",
"262403350753745789857201122295951009365",
"49390516469662913432793418088130928797",
"120108255795814380581755763522706024029",
"266619234797008333982687053462564331314",
"246081031208700391688988786397038351829",
"269856738225017441979661872547499549517",
"153654054109336944387642088461796331962"
],
"threshold": 0.9
},
"source": "https://github.com/the-tcpdump-group/libpcap/commit/262e4f34979872d822ccedf9f318ed89c4d31c03",
"signature_type": "Line",
"id": "CVE-2023-7256-b3c0d7d7"
},
{
"signature_version": "v1",
"deprecated": false,
"target": {
"function": "rpcap_remoteact_getsock",
"file": "pcap-rpcap.c"
},
"digest": {
"function_hash": "14982502768147248478340606297026746275",
"length": 667.0
},
"source": "https://github.com/the-tcpdump-group/libpcap/commit/2aa69b04d8173b18a0e3492e0c8f2f7fabdf642d",
"signature_type": "Function",
"id": "CVE-2023-7256-b472724e"
},
{
"signature_version": "v1",
"deprecated": false,
"target": {
"function": "main_active",
"file": "rpcapd/rpcapd.c"
},
"digest": {
"function_hash": "194842869702886619565683100847951647416",
"length": 1512.0
},
"source": "https://github.com/the-tcpdump-group/libpcap/commit/2aa69b04d8173b18a0e3492e0c8f2f7fabdf642d",
"signature_type": "Function",
"id": "CVE-2023-7256-c2231ac9"
},
{
"signature_version": "v1",
"deprecated": false,
"target": {
"function": "main_active",
"file": "rpcapd/rpcapd.c"
},
"digest": {
"function_hash": "151848125572030836624145098949071368671",
"length": 1524.0
},
"source": "https://github.com/the-tcpdump-group/libpcap/commit/262e4f34979872d822ccedf9f318ed89c4d31c03",
"signature_type": "Function",
"id": "CVE-2023-7256-c46e9782"
},
{
"signature_version": "v1",
"deprecated": false,
"target": {
"function": "sock_present2network",
"file": "sockutils.c"
},
"digest": {
"function_hash": "35650229396765440061147643765128059692",
"length": 641.0
},
"source": "https://github.com/the-tcpdump-group/libpcap/commit/262e4f34979872d822ccedf9f318ed89c4d31c03",
"signature_type": "Function",
"id": "CVE-2023-7256-c7a5dfcc"
},
{
"signature_version": "v1",
"deprecated": false,
"target": {
"function": "pcap_startcapture_remote",
"file": "pcap-rpcap.c"
},
"digest": {
"function_hash": "22775793223559657460746774671713044068",
"length": 6706.0
},
"source": "https://github.com/the-tcpdump-group/libpcap/commit/2aa69b04d8173b18a0e3492e0c8f2f7fabdf642d",
"signature_type": "Function",
"id": "CVE-2023-7256-d14ca346"
},
{
"signature_version": "v1",
"deprecated": false,
"target": {
"file": "pcap-rpcap.c"
},
"digest": {
"line_hashes": [
"40669374690502538470315743841168077894",
"63819124300106168761914819477403112688",
"1165856592343266696747989236980703837",
"5882308988677858096832039231294838579",
"121835889193753465365796499450594072279",
"146841660788929940903850314216057369195",
"84160832503013027552727355963486146502",
"216775884614168279208998562978211320558",
"242812913729751748712461509451191702070",
"59984086340925470357619558821180492777",
"235739287242916627928669765113863249271",
"235799377420646169233886836838207505100",
"169783037548893509844193108380157611388",
"231407221747797562654054623494960753584",
"173198073671297191333369825131963447874",
"272976691289590986950020890092192089435",
"175244527391768110580217141935661533553",
"136489301541010121082365022497382862098",
"295273163032830094100420528501623789267",
"138819165106324143708108057862446145194",
"310756738092252218395417459252740876656",
"266069833265693673160322311920350360499",
"321730234753682973014669837210331215318",
"29967682514893632970498422524427534288",
"111788505975074833933080464245044084249",
"12744630514991639690802671834911213085",
"101133754547179744875403574571356944946",
"279618488485498743178083254180323010984",
"207241277244122347552970822807913054032",
"101305225020058452712756845132455923039",
"69545744282213546708361330851550967229",
"155632014794621761856527475023983852573",
"200687575031491658230696937800598055797",
"332270070096588397410906673401619536741",
"69945538608591519591221648182531514448",
"271262699451746042307904184415742942326",
"193445390001593151206132881931735368467",
"333074141710635353878506192750459148821",
"167315427331382631870498555401817833989",
"102872031256158234299409398720193970722",
"193543545118401208980849436783300410491",
"213459757548120950915255620256655570646",
"271262699451746042307904184415742942326",
"63513406422064069600407402280999067491",
"255194140331966874866520717026704477267",
"218144472623656190596253477206242361238",
"139418139963891272965905281796335700012",
"291357597897183521787533139415906428132",
"98449790716217602801590487465367070713",
"310873983526312249262844356517217448269",
"121835889193753465365796499450594072279",
"146841660788929940903850314216057369195",
"84160832503013027552727355963486146502",
"216775884614168279208998562978211320558",
"71007502626013954253372218268707169287",
"231788259964399913793399591875295946886"
],
"threshold": 0.9
},
"source": "https://github.com/the-tcpdump-group/libpcap/commit/2aa69b04d8173b18a0e3492e0c8f2f7fabdf642d",
"signature_type": "Line",
"id": "CVE-2023-7256-d1dbfdd1"
},
{
"signature_version": "v1",
"deprecated": false,
"target": {
"file": "sockutils.c"
},
"digest": {
"line_hashes": [
"53186758510562065052829121628281234225",
"22385412585003582675352389821877280450",
"104677171215107127104510899854173653330",
"148544528429452445770088812234585691375",
"228637810615236140491270436805372761056",
"166588014089009217865034259150037561834",
"201622448501740394068225061701729331769",
"25344465509560814473455385952969568500",
"156199164266791838620503006341795499736",
"247000023714476308021105080260885976067",
"163396120961968569133921018478306583244",
"257395416551951904253182964971416199115",
"309745985459800759369295673487519894475",
"85214213511955834863079988696494116559",
"74453412570778478441971047107790593256",
"117457446029391252998461207072562262338",
"76141739057574756296817500854216228164",
"317323787122640855529598671997307332873",
"133625945709424717948202930411233808166",
"153043827272302636969884089773944710454",
"201224834420235997478342070620735572669",
"241018611647907728653196606098616056849",
"185840068427074688236288624445556764566",
"317229912949292601170900528718825956070",
"143121139624474137479755660008422789602",
"198372105430118894364684899077895616020",
"136420754758955219446576016120895544905",
"203331422706745239990268018936941558818",
"324639434604197486185149951189577860570",
"119119192188320254523528207273252818317",
"60111422188117259949987673654394786613",
"322599817951707994132297128283509316250",
"239964616105489509602063892978473933814",
"98198641377776421780936148002132385211",
"8623320778037871464485036576428400322",
"235390142618435792354481801846339407701",
"251487702364174914628928740798221064994",
"913641848789658579602351921985854640",
"79239158957977101432931120765867852017",
"90969234854376344536515428010312480344",
"312368653794558998568165718788278203627",
"232009245695055290217083011299876492012",
"98198641377776421780936148002132385211",
"142831637580257773315009956899295965699",
"297295444819886776360825326696600298970",
"239223146008692130711891686243032160499",
"223364753542271970748195450079387879989",
"259240297013894798628000417485695258645",
"228336537724215608033599619638575582701",
"105215930898953609465188264936638087865",
"201641516034210167861696953571418931544"
],
"threshold": 0.9
},
"source": "https://github.com/the-tcpdump-group/libpcap/commit/262e4f34979872d822ccedf9f318ed89c4d31c03",
"signature_type": "Line",
"id": "CVE-2023-7256-e36d0c21"
},
{
"signature_version": "v1",
"deprecated": false,
"target": {
"function": "main_startup",
"file": "rpcapd/rpcapd.c"
},
"digest": {
"function_hash": "85131676763586344772035155888922401932",
"length": 2374.0
},
"source": "https://github.com/the-tcpdump-group/libpcap/commit/2aa69b04d8173b18a0e3492e0c8f2f7fabdf642d",
"signature_type": "Function",
"id": "CVE-2023-7256-f143488f"
},
{
"signature_version": "v1",
"deprecated": false,
"target": {
"function": "pcap_remoteact_close",
"file": "pcap-rpcap.c"
},
"digest": {
"function_hash": "87188957415123731462782439807507789829",
"length": 1391.0
},
"source": "https://github.com/the-tcpdump-group/libpcap/commit/2aa69b04d8173b18a0e3492e0c8f2f7fabdf642d",
"signature_type": "Function",
"id": "CVE-2023-7256-f4f92b92"
}
]