Libpcap · Libpcap · CVE-2024-8006
**Name of the Vulnerable Software and Affected Versions**
libpcap (affected versions not specified)
**Description**
The issue is related to a null pointer dereference in the `pcap findalldevs ex()` function of the libpcap library. This function becomes available when a user builds libpcap with remote packet capture support enabled. The function takes a filesystem path as an argument, which is expected to be a directory with input data files. If the specified path cannot be used as a directory, the `opendir()` function returns NULL, but this return value is not checked, and the NULL value is passed to `readdir()`, causing a null pointer dereference. This can allow an attacker to cause a denial of service.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.