Nixpkgs security tracker

Login with GitHub

⚠️ You are using a production deployment that is still only suitable for demo purposes. Any work done in this might be wiped later without notice.

Suggestion detail

Untriaged

Permalink CVE-2010-3844

created 2 months ago Activity log

Created suggestion 2 months ago

An unchecked sscanf() call in ettercap before 0.7.5 allows an …

An unchecked sscanf() call in ettercap before 0.7.5 allows an insecure temporary settings file to overflow a static-sized buffer on the stack.

References

https://security-tracker.debian.org/tracker/CVE-2010-3844 x_transferredx_refsource_MISC
https://access.redhat.com/security/cve/cve-2010-3844 x_transferredx_refsource_MISC
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=600130 x_transferredx_refsource_MISC
https://github.com/Ettercap/ettercap/commit/4ef3ede30181eca9add74305ad26dbcb0c3… x_transferredx_refsource_MISC

Affected products

ettercap

==0.7.3

Matching in nixpkgs

pkgs.ettercap

Comprehensive suite for man in the middle attacks

nixos-unstable 0.8.4-unstable-2025-07-16
- nixpkgs-unstable 0.8.4-unstable-2025-07-16
- nixos-unstable-small 0.8.4-unstable-2025-07-16
nixos-25.11 0.8.4-unstable-2025-07-16
- nixos-25.11-small 0.8.4-unstable-2025-07-16
- nixpkgs-25.11-darwin 0.8.4-unstable-2025-07-16

pkgs.bettercap

Man in the middle tool

nixos-unstable 2.41.5
- nixpkgs-unstable 2.41.5
- nixos-unstable-small 2.41.5
nixos-25.11 2.41.4
- nixos-25.11-small 2.41.4
- nixpkgs-25.11-darwin 2.41.4

Package maintainers

@y0no Yoann Ono <y0no@y0no.fr>
@pSub Pascal Wittmann <mail@pascal-wittmann.de>