{"id":"AZL-54386","summary":"CVE-2024-52949 affecting package iptraf-ng for versions less than 1.2.2-1","details":"iptraf-ng 1.2.1 has a stack-based buffer overflow. In src/ifaces.c, the strcpy function consistently fails to control the size, and it is consequently possible to overflow memory on the stack.","modified":"2026-04-21T04:35:34.290550Z","published":"2024-12-16T22:15:06Z","upstream":["CVE-2024-52949"],"references":[{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-52949"}],"affected":[{"package":{"name":"iptraf-ng","ecosystem":"Azure Linux:3","purl":"pkg:rpm/azure-linux/iptraf-ng"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.2.2-1"}]}],"database_specific":{"source":"https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-54386.json"}}],"schema_version":"1.7.5"}