Libpcap · Libpcap · CVE-2025-11961
**Name of the Vulnerable Software and Affected Versions**
libpcap (affected versions not specified)
**Description**
The `pcap ether aton()` function in libpcap has a flaw where it can read and write data beyond allocated buffer boundaries when provided with a malformed MAC-48 address string. The function expects a well-formed MAC-48 address but lacks adequate documentation regarding the expected format. If an application calls the function with an improperly formatted string, it can lead to a buffer overflow. The vulnerable function is `pcap ether aton()`.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.