K04225025 : tcpdump vulnerabilities CVE-2017-5202, CVE-2017-5203, CVE-2017-5204, CVE-2017-5205, and CVE-2017-5342

Security Advisory Description

• CVE-2017-5202

The ISO CLNS parser in tcpdump before 4.9.0 has a buffer overflow in print-isoclns.c:clnp_print().

• CVE-2017-5203

The BOOTP parser in tcpdump before 4.9.0 has a buffer overflow in print-bootp.c:bootp_print().

• CVE-2017-5204

The IPv6 parser in tcpdump before 4.9.0 has a buffer overflow in print-ip6.c:ip6_print().

• CVE-2017-5205

The ISAKMP parser in tcpdump before 4.9.0 has a buffer overflow in print-isakmp.c:ikev2_e_print().

• CVE-2017-5342

In tcpdump before 4.9.0, a bug in multiple protocol parsers (Geneve, GRE, NSH, OTV, VXLAN and VXLAN GPE) could cause a buffer overflow in print-ether.c:ether_print().
Impact
An attacker can gain access to sensitive information. An attacker can also cause a denial of service (DoS) via a crafted pcap file or by sending specially crafted packets to the network segment wheretcpdump is actively capturing network traffic. Thetcpdump program does not use the protocol decoding subsystem, and is therefore not affected by these vulnerabilities when using the-w option to write raw packets to a** pcap** file for offline examination.