{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2025-11964", "assignerOrgId": "cfdbb673-b408-4d03-89c1-c3d73ed80896", "state": "PUBLISHED", "assignerShortName": "Tcpdump", "dateReserved": "2025-10-20T14:43:15.180Z", "datePublished": "2025-12-31T00:58:19.026Z", "dateUpdated": "2026-01-02T14:38:10.106Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "product": "libpcap", "programFiles": ["fmtutils.c"], "programRoutines": [{"name": "utf_16le_to_utf_8_truncated()"}], "repo": "https://github.com/the-tcpdump-group/libpcap/", "vendor": "The Tcpdump Group", "versions": [{"lessThan": "1.10.6", "status": "affected", "version": "1.10.0", "versionType": "semver"}]}], "credits": [{"lang": "en", "type": "reporter", "value": "Aniruddhan Murali"}, {"lang": "en", "type": "reporter", "value": "Noble Saji Mathews"}, {"lang": "en", "type": "reporter", "value": "Mahmoud Alfadel"}, {"lang": "en", "type": "reporter", "value": "Mei Nagappan"}, {"lang": "en", "type": "reporter", "value": "Meng Xu"}], "descriptions": [{"lang": "en", "value": "On Windows only, if libpcap needs to convert a Windows error message to UTF-8 and the message includes characters that UTF-8 represents using 4 bytes, utf_16le_to_utf_8_truncated() can write data beyond the end of the provided buffer."}], "metrics": [{"cvssV3_1": {"attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "NONE", "baseScore": 1.9, "baseSeverity": "LOW", "confidentialityImpact": "NONE", "integrityImpact": "LOW", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:N", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-787", "description": "CWE-787 Out-of-bounds Write", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "cfdbb673-b408-4d03-89c1-c3d73ed80896", "shortName": "Tcpdump", "dateUpdated": "2025-12-31T00:58:19.026Z"}, "references": [{"tags": ["patch"], "url": "https://github.com/the-tcpdump-group/libpcap/commit/7fabf607f2319a36a0bd78444247180acb838e69"}], "solutions": [{"lang": "en", "value": "libpcap 1.10.6 includes a fix for this bug."}], "source": {"discovery": "EXTERNAL"}, "title": "OOBW in utf_16le_to_utf_8_truncated() in libpcap"}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-01-02T14:23:03.611964Z", "id": "CVE-2025-11964", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-01-02T14:38:10.106Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2025-11964", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-01-02T14:23:03.611964Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-01-02T14:23:05.342Z"}}], "cna": {"title": "OOBW in utf_16le_to_utf_8_truncated() in libpcap", "source": {"discovery": "EXTERNAL"}, "credits": [{"lang": "en", "type": "reporter", "value": "Aniruddhan Murali"}, {"lang": "en", "type": "reporter", "value": "Noble Saji Mathews"}, {"lang": "en", "type": "reporter", "value": "Mahmoud Alfadel"}, {"lang": "en", "type": "reporter", "value": "Mei Nagappan"}, {"lang": "en", "type": "reporter", "value": "Meng Xu"}], "metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 1.9, "attackVector": "LOCAL", "baseSeverity": "LOW", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "NONE", "privilegesRequired": "HIGH", "confidentialityImpact": "NONE"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"repo": "https://github.com/the-tcpdump-group/libpcap/", "vendor": "The Tcpdump Group", "product": "libpcap", "versions": [{"status": "affected", "version": "1.10.0", "lessThan": "1.10.6", "versionType": "semver"}], "programFiles": ["fmtutils.c"], "defaultStatus": "unaffected", "programRoutines": [{"name": "utf_16le_to_utf_8_truncated()"}]}], "solutions": [{"lang": "en", "value": "libpcap 1.10.6 includes a fix for this bug."}], "references": [{"url": "https://github.com/the-tcpdump-group/libpcap/commit/7fabf607f2319a36a0bd78444247180acb838e69", "tags": ["patch"]}], "descriptions": [{"lang": "en", "value": "On Windows only, if libpcap needs to convert a Windows error message to UTF-8 and the message includes characters that UTF-8 represents using 4 bytes, utf_16le_to_utf_8_truncated() can write data beyond the end of the provided buffer."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-787", "description": "CWE-787 Out-of-bounds Write"}]}], "providerMetadata": {"orgId": "cfdbb673-b408-4d03-89c1-c3d73ed80896", "shortName": "Tcpdump", "dateUpdated": "2025-12-31T00:58:19.026Z"}}}, "cveMetadata": {"cveId": "CVE-2025-11964", "state": "PUBLISHED", "dateUpdated": "2026-01-02T14:38:10.106Z", "dateReserved": "2025-10-20T14:43:15.180Z", "assignerOrgId": "cfdbb673-b408-4d03-89c1-c3d73ed80896", "datePublished": "2025-12-31T00:58:19.026Z", "assignerShortName": "Tcpdump"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "On Windows only, if libpcap needs to convert a Windows error message to UTF-8 and the message includes characters that UTF-8 represents using 4 bytes, utf_16le_to_utf_8_truncated() can write data beyond the end of the provided buffer."}], "id": "CVE-2025-11964", "lastModified": "2025-12-31T20:42:15.637", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "NONE", "baseScore": 1.9, "baseSeverity": "LOW", "confidentialityImpact": "NONE", "integrityImpact": "LOW", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:N", "version": "3.1"}, "exploitabilityScore": 0.5, "impactScore": 1.4, "source": "security@tcpdump.org", "type": "Secondary"}]}, "published": "2025-12-31T01:15:54.667", "references": [{"source": "security@tcpdump.org", "url": "https://github.com/the-tcpdump-group/libpcap/commit/7fabf607f2319a36a0bd78444247180acb838e69"}], "sourceIdentifier": "security@tcpdump.org", "vulnStatus": "Awaiting Analysis", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-787"}], "source": "security@tcpdump.org", "type": "Secondary"}]}

{"bugzilla": {"description": "libpcap: libpcap: Data corruption via out-of-bounds write on Windows", "id": "2426394", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2426394"}, "csaw": false, "cvss3": {"cvss3_base_score": "1.9", "cvss3_scoring_vector": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:N", "status": "draft"}, "cwe": "CWE-787", "details": ["On Windows only, if libpcap needs to convert a Windows error message to UTF-8 and the message includes characters that UTF-8 represents using 4 bytes, utf_16le_to_utf_8_truncated() can write data beyond the end of the provided buffer.", "A flaw was found in libpcap on Windows. When libpcap converts a Windows error message containing 4-byte UTF-8 characters, the utf_16le_to_utf_8_truncated() function can write data beyond its allocated buffer. This out-of-bounds write can lead to data corruption, impacting the integrity of the system. Exploitation requires high privileges and local access, with high attack complexity."], "mitigation": {"lang": "en:us", "value": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability."}, "name": "CVE-2025-11964", "package_state": [{"cpe": "cpe:/o:redhat:enterprise_linux:10", "fix_state": "Not affected", "package_name": "libpcap", "product_name": "Red Hat Enterprise Linux 10"}, {"cpe": "cpe:/o:redhat:enterprise_linux:6", "fix_state": "Not affected", "package_name": "libpcap", "product_name": "Red Hat Enterprise Linux 6"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Not affected", "package_name": "libpcap", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Not affected", "package_name": "libpcap", "product_name": "Red Hat Enterprise Linux 8"}, {"cpe": "cpe:/o:redhat:enterprise_linux:9", "fix_state": "Not affected", "package_name": "libpcap", "product_name": "Red Hat Enterprise Linux 9"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "rhcos", "product_name": "Red Hat OpenShift Container Platform 4"}], "public_date": "2025-12-31T00:58:19Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2025-11964\nhttps://nvd.nist.gov/vuln/detail/CVE-2025-11964\nhttps://github.com/the-tcpdump-group/libpcap/commit/7fabf607f2319a36a0bd78444247180acb838e69"], "statement": "This vulnerability is rated Low for Red Hat as the flaw in libpcap specifically affects Windows operating systems. Red Hat products, including Red Hat Enterprise Linux and OpenShift Container Platform, are not affected as the vulnerable code is not present in their respective libpcap packages.", "threat_severity": "Low"}