{"id":"ALSA-2025:7064","summary":"Moderate: iptraf-ng security update","details":"IPTraf-ng is a console-based network monitoring utility which includes an IP traffic monitor, a TCP and UDP service monitor, and a LAN statistics module. It supports Ethernet, FDDI, ISDN, SLIP, PPP, and loopback interfaces as well as the built-in raw socket interface of the Linux kernel.  \n\nSecurity Fix(es):  \n\n  * iptraf-ng: buffer overflow via ifaces.c (CVE-2024-52949)\n\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.  \n\nAdditional Changes:  \n\nFor detailed information on changes in this release, see the AlmaLinuxRelease Notes linked from the References section.\n","modified":"2026-02-04T03:38:15.216717Z","published":"2025-05-13T00:00:00Z","related":["CVE-2024-52949"],"references":[{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2025:7064"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2024-52949"},{"type":"REPORT","url":"https://bugzilla.redhat.com/2332702"},{"type":"ADVISORY","url":"https://errata.almalinux.org/9/ALSA-2025-7064.html"}],"affected":[{"package":{"name":"iptraf-ng","ecosystem":"AlmaLinux:9","purl":"pkg:rpm/almalinux/iptraf-ng"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.2.2-1.el9"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2025:7064.json"}}],"schema_version":"1.7.3"}