cve/2024/CVE-2024-2397.md

### [CVE-2024-2397](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-2397)
![](https://img.shields.io/static/v1?label=Product&message=tcpdump&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=0d4083e%3C%20b9811ef%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-835%20Loop%20with%20Unreachable%20Exit%20Condition%20('Infinite%20Loop')&color=brighgreen)

### Description

Due to a bug in packet data buffers management, the PPP printer in tcpdump can enter an infinite loop when reading a crafted DLT_PPP_SERIAL .pcap savefile.  This problem does not affect any tcpdump release, but it affected the git master branch from 2023-06-05 to 2024-03-21.

### POC

#### Reference
No PoCs from references.

#### Github
- https://github.com/fkie-cad/nvd-json-data-feeds