CVE-2018-14468

🗓️ 03 Oct 2019 15:27:45Reported by mitreType

cve🔗 web.nvd.nist.gov📰️ 4 Media mentions👁 282 Views

The FRF.16 parser in tcpdump before 4.9.3 has a buffer over-read

Reporter	Title	Published	Views	Family All 145
IBM Security Bulletins	Security Bulletin: Vulnerabilities in tcpdump affect AIX	26 Feb 202118:48	–	ibm
Tenable Nessus	AIX 7.1 TL 5 : tcpdump (IJ20783)	9 Jan 202000:00	–	nessus
Tenable Nessus	AIX 7.2 TL 2 : tcpdump (IJ20784)	9 Jan 202000:00	–	nessus
Tenable Nessus	AIX 7.2 TL 3 : tcpdump (IJ20785)	9 Jan 202000:00	–	nessus
Tenable Nessus	AIX 7.2 TL 4 : tcpdump (IJ20786)	9 Jan 202000:00	–	nessus
Tenable Nessus	Debian DLA-1955-1 : tcpdump security update	14 Oct 201900:00	–	nessus
Tenable Nessus	Debian DSA-4547-1 : tcpdump - security update	22 Oct 201900:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP8 : tcpdump (EulerOS-SA-2019-2305)	27 Nov 201900:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP5 : tcpdump (EulerOS-SA-2019-2703)	23 Dec 201900:00	–	nessus
Tenable Nessus	EulerOS Virtualization for ARM 64 3.0.5.0 : tcpdump (EulerOS-SA-2020-1072)	13 Jan 202000:00	–	nessus

NVD

Node

tcpdump tcpdumpRange<4.9.3

Node

apple mac_os_xRange<10.15.2

debian debian_linuxMatch8.0

debian debian_linuxMatch9.0

debian debian_linuxMatch10.0

fedoraproject fedoraMatch29

fedoraproject fedoraMatch30

fedoraproject fedoraMatch31

opensuse leapMatch15.0

opensuse leapMatch15.1

redhat enterprise_linuxMatch7.0

redhat enterprise_linuxMatch8.0

Node

f5 big-iq_centralized_managementRange5.2.0–5.4.0

f5 big-iq_centralized_managementRange6.0.0–6.1.0

f5 big-iq_centralized_managementMatch7.0.0

Node

f5 big-ip_access_policy_managerRange11.6.0–11.6.5

f5 big-ip_access_policy_managerRange12.1.0–12.1.5

f5 big-ip_access_policy_managerRange13.1.0–13.1.3

f5 big-ip_access_policy_managerRange14.0.0–14.1.2

f5 big-ip_access_policy_managerRange15.0.0–15.0.1

f5 big-ip_advanced_firewall_managerRange11.6.0–11.6.5

f5 big-ip_advanced_firewall_managerRange12.1.0–12.1.5

f5 big-ip_advanced_firewall_managerRange13.1.0–13.1.3

f5 big-ip_advanced_firewall_managerRange14.0.0–14.1.2

f5 big-ip_advanced_firewall_managerRange15.0.0–15.0.1

f5 big-ip_analyticsRange11.6.0–11.6.5

f5 big-ip_analyticsRange12.1.0–12.1.5

f5 big-ip_analyticsRange13.1.0–13.1.3

f5 big-ip_analyticsRange14.0.0–14.1.2

f5 big-ip_analyticsRange15.0.0–15.0.1

f5 big-ip_application_acceleration_managerRange11.6.0–11.6.5

f5 big-ip_application_acceleration_managerRange12.1.0–12.1.5

f5 big-ip_application_acceleration_managerRange13.1.0–13.1.3

f5 big-ip_application_acceleration_managerRange14.0.0–14.1.2

f5 big-ip_application_acceleration_managerRange15.0.0–15.0.1

f5 big-ip_application_security_managerRange11.6.0–11.6.5

f5 big-ip_application_security_managerRange12.1.0–12.1.5

f5 big-ip_application_security_managerRange13.1.0–13.1.3

f5 big-ip_application_security_managerRange14.0.0–14.1.2

f5 big-ip_application_security_managerRange15.0.0–15.0.1

f5 big-ip_domain_name_systemRange11.6.0–11.6.5

f5 big-ip_domain_name_systemRange12.1.0–12.1.5

f5 big-ip_domain_name_systemRange13.1.0–13.1.3

f5 big-ip_domain_name_systemRange14.0.0–14.1.2

f5 big-ip_domain_name_systemRange15.0.0–15.0.1

f5 big-ip_edge_gatewayRange11.6.0–11.6.5

f5 big-ip_edge_gatewayRange12.1.0–12.1.5

f5 big-ip_edge_gatewayRange13.1.0–13.1.3

f5 big-ip_edge_gatewayRange14.0.0–14.1.2

f5 big-ip_edge_gatewayRange15.0.0–15.0.1

f5 big-ip_fraud_protection_serviceRange11.6.0–11.6.5

f5 big-ip_fraud_protection_serviceRange12.1.0–12.1.5

f5 big-ip_fraud_protection_serviceRange13.1.0–13.1.3

f5 big-ip_fraud_protection_serviceRange14.0.0–14.1.2

f5 big-ip_fraud_protection_serviceRange15.0.0–15.0.1

f5 big-ip_global_traffic_managerRange11.6.0–11.6.5

f5 big-ip_global_traffic_managerRange12.1.0–12.1.5

f5 big-ip_global_traffic_managerRange13.1.0–13.1.3

f5 big-ip_global_traffic_managerRange14.0.0–14.1.2

f5 big-ip_global_traffic_managerRange15.0.0–15.0.1

f5 big-ip_link_controllerRange11.6.0–11.6.5

f5 big-ip_link_controllerRange12.1.0–12.1.5

f5 big-ip_link_controllerRange13.1.0–13.1.3

f5 big-ip_link_controllerRange14.0.0–14.1.2

f5 big-ip_link_controllerRange15.0.0–15.0.1

f5 big-ip_local_traffic_managerRange11.6.0–11.6.5

f5 big-ip_local_traffic_managerRange12.1.0–12.1.5

f5 big-ip_local_traffic_managerRange13.1.0–13.1.3

f5 big-ip_local_traffic_managerRange14.0.0–14.1.2

f5 big-ip_local_traffic_managerRange15.0.0–15.0.1

f5 big-ip_policy_enforcement_managerRange11.6.0–11.6.5

f5 big-ip_policy_enforcement_managerRange12.1.0–12.1.5

f5 big-ip_policy_enforcement_managerRange13.1.0–13.1.3

f5 big-ip_policy_enforcement_managerRange14.0.0–14.1.2

f5 big-ip_policy_enforcement_managerRange15.0.0–15.0.1

f5 big-ip_webacceleratorRange11.6.0–11.6.5

f5 big-ip_webacceleratorRange12.1.0–12.1.5

f5 big-ip_webacceleratorRange13.1.0–13.1.3

f5 big-ip_webacceleratorRange14.0.0–14.1.2

f5 big-ip_webacceleratorRange15.0.0–15.0.1

Node

f5 enterprise_managerMatch3.1.1

f5 iworkflowMatch2.3.0

f5 traffix_signaling_delivery_controllerRange5.0.0–5.1.0

Source	Link
lists	www.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FNYXF3IY2X65IOD422SA6EQUULSGW7FN/
support	www.support.f5.com/csp/article/K04367730
lists	www.lists.opensuse.org/opensuse-security-announce/2019-10/msg00053.html
seclists	www.seclists.org/bugtraq/2019/Dec/23
lists	www.lists.debian.org/debian-lts-announce/2019/10/msg00015.html
seclists	www.seclists.org/fulldisclosure/2019/Dec/26
usn	www.usn.ubuntu.com/4252-2/
debian	www.debian.org/security/2019/dsa-4547
github	www.github.com/the-tcpdump-group/tcpdump/commit/aa3e54f594385ce7e1e319b0c84999e51192578b
github	www.github.com/the-tcpdump-group/tcpdump/blob/tcpdump-4.9/CHANGES

03 Dec 2025 21:15Current

8.6High risk

Vulners AI Score8.6

CVSS 25

CVSS 3.17.5

EPSS0.02283

SSVC

CWE-125