iptraf-ng-1.2.2-1.el9

エラータID: AXSA:2025-10086:01

Release date: 
Friday, June 27, 2025 - 19:20
Subject: 
iptraf-ng-1.2.2-1.el9
Affected Channels: 
MIRACLE LINUX 9 for x86_64
Severity: 
Moderate
Description: 

IPTraf-ng is a console-based network monitoring utility which includes an IP traffic monitor, a TCP and UDP service monitor, and a LAN statistics module. It supports Ethernet, FDDI, ISDN, SLIP, PPP, and loopback interfaces as well as the built-in raw socket interface of the Linux kernel.

Security Fix(es):

* iptraf-ng: buffer overflow via ifaces.c (CVE-2024-52949)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the MIRACLE LINUX 9 Release Notes linked from the References section.

CVE-2024-52949
iptraf-ng 1.2.1 has a stack-based buffer overflow. In src/ifaces.c, the strcpy function consistently fails to control the size, and it is consequently possible to overflow memory on the stack.

Solution: 

Update packages.

CVEs: 
CVE-2024-52949
iptraf-ng 1.2.1 has a stack-based buffer overflow. In src/ifaces.c, the strcpy function consistently fails to control the size, and it is consequently possible to overflow memory on the stack.
Additional Info: 

N/A

Download: 

SRPMS
  1. iptraf-ng-1.2.2-1.el9.src.rpm
    MD5: ec704faa0e408daecdfd0b05ebc627cd
    SHA-256: 93d7984c32f89d645a7e3692f6edebd066c536beef409081d47f2d867eafb5f3
    Size: 330.01 kB

Asianux Server 9 for x86_64
  1. iptraf-ng-1.2.2-1.el9.x86_64.rpm
    MD5: 05c4e1c0a443110c3ae3a33afba3f5b0
    SHA-256: ed0cf9b919b621c2ef6495a5372bba57f44f4069ef6dec7c4d8ce026ceba8a92
    Size: 266.28 kB