9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.021 Low
EPSS
Percentile
89.1%
Debian Security Advisory DSA-3775-1 [email protected]
https://www.debian.org/security/ Moritz Muehlenhoff
January 29, 2017 https://www.debian.org/security/faq
Package : tcpdump
CVE ID : CVE-2016-7922 CVE-2016-7923 CVE-2016-7924 CVE-2016-7925
CVE-2016-7926 CVE-2016-7927 CVE-2016-7928 CVE-2016-7929
CVE-2016-7930 CVE-2016-7931 CVE-2016-7932 CVE-2016-7933
CVE-2016-7934 CVE-2016-7935 CVE-2016-7936 CVE-2016-7937
CVE-2016-7938 CVE-2016-7939 CVE-2016-7940 CVE-2016-7973
CVE-2016-7974 CVE-2016-7975 CVE-2016-7983 CVE-2016-7984
CVE-2016-7985 CVE-2016-7986 CVE-2016-7992 CVE-2016-7993
CVE-2016-8574 CVE-2016-8575 CVE-2017-5202 CVE-2017-5203
CVE-2017-5204 CVE-2017-5205 CVE-2017-5341 CVE-2017-5342
CVE-2017-5482 CVE-2017-5483 CVE-2017-5484 CVE-2017-5485
CVE-2017-5486
Multiple vulnerabilities have been discovered in tcpdump, a command-line
network traffic analyzer. These vulnerabilities might result in denial
of service or the execution of arbitrary code.
For the stable distribution (jessie), these problems have been fixed in
version 4.9.0-1~deb8u1.
For the testing distribution (stretch), these problems have been fixed
in version 4.9.0-1.
For the unstable distribution (sid), these problems have been fixed in
version 4.9.0-1.
We recommend that you upgrade your tcpdump packages.
Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/
Mailing list: [email protected]
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 7 | amd64 | tcpdump | < 4.9.0-1~deb7u1 | tcpdump_4.9.0-1~deb7u1_amd64.deb |
Debian | 8 | armel | tcpdump | < 4.9.0-1~deb8u1 | tcpdump_4.9.0-1~deb8u1_armel.deb |
Debian | 8 | amd64 | tcpdump | < 4.9.0-1~deb8u1 | tcpdump_4.9.0-1~deb8u1_amd64.deb |
Debian | 8 | kfreebsd-amd64 | tcpdump | < 4.9.0-1~deb8u1 | tcpdump_4.9.0-1~deb8u1_kfreebsd-amd64.deb |
Debian | 8 | armhf | tcpdump | < 4.9.0-1~deb8u1 | tcpdump_4.9.0-1~deb8u1_armhf.deb |
Debian | 8 | mips | tcpdump | < 4.9.0-1~deb8u1 | tcpdump_4.9.0-1~deb8u1_mips.deb |
Debian | 8 | ppc64el | tcpdump | < 4.9.0-1~deb8u1 | tcpdump_4.9.0-1~deb8u1_ppc64el.deb |
Debian | 8 | kfreebsd-i386 | tcpdump | < 4.9.0-1~deb8u1 | tcpdump_4.9.0-1~deb8u1_kfreebsd-i386.deb |
Debian | 7 | i386 | tcpdump | < 4.9.0-1~deb7u1 | tcpdump_4.9.0-1~deb7u1_i386.deb |
Debian | 8 | all | tcpdump | < 4.9.0-1~deb8u1 | tcpdump_4.9.0-1~deb8u1_all.deb |
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.021 Low
EPSS
Percentile
89.1%