CVE-2025-11964 – OOBW in utf_16le_to_utf_8_truncated() in libpcap

CVE ID : CVE-2025-11964

Published : Dec. 31, 2025, 1:15 a.m. | 1 hour, 8 minutes ago

Description : On Windows only, if libpcap needs to convert a Windows error message to UTF-8 and the message includes characters that UTF-8 represents using 4 bytes, utf_16le_to_utf_8_truncated() can write data beyond the end of the provided buffer.

Severity: 1.9 | LOW

Visit the link for more details, such as CVSS details, affected products, timeline, and more…