tcpdump: multiple overflow issues in protocol decoding

🗓️ 01 Aug 2017 12:00:24Reported by RedHatType

redhat

redhat🔗 access.redhat.com👁 3 Views

Tcpdump protocol decoding has overflow and out of bounds read flaws that may crash or loop.

Reporter	Title	Published	Views	Family All 105
IBM Security Bulletins	Security Bulletin: Vulnerabilities in tcpdump affect IBM Flex System Chassis Management Module (CMM)	31 Jan 201902:25	–	ibm
AlpineLinux	CVE-2016-7992	28 Jan 201701:33	–	alpinelinux
Apple	About the security content of macOS Sierra 10.12.4, Security Update 2017-001 El Capitan, and Security Update 2017-001 Yosemite	27 Mar 201700:00	–	apple
Apple	About the security content of macOS Sierra 10.12.4, Security Update 2017-001 El Capitan, and Security Update 2017-001 Yosemite - Apple Support	29 Aug 201702:52	–	apple
ArchLinux	[ASA-201702-1] tcpdump: arbitrary code execution	2 Feb 201700:00	–	archlinux
Tenable Nessus	CentOS 7 : tcpdump (CESA-2017:1871)	25 Aug 201700:00	–	nessus
Tenable Nessus	Debian DLA-809-1 : tcpdump security update	31 Jan 201700:00	–	nessus
Tenable Nessus	Debian DSA-3775-1 : tcpdump - security update	30 Jan 201700:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP1 : tcpdump (EulerOS-SA-2017-1179)	8 Sep 201700:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP2 : tcpdump (EulerOS-SA-2017-1180)	8 Sep 201700:00	–	nessus

OS	OS Version	Architecture	Package	Package Version	Filename
Red Hat Enterprise Linux	7	aarch64	tcpdump	14:4.9.0-5.el7	tcpdump-14:4.9.0-5.el7.aarch64.rpm
Red Hat Enterprise Linux	7	ppc64	tcpdump	14:4.9.0-5.el7	tcpdump-14:4.9.0-5.el7.ppc64.rpm
Red Hat Enterprise Linux	7	ppc64le	tcpdump	14:4.9.0-5.el7	tcpdump-14:4.9.0-5.el7.ppc64le.rpm
Red Hat Enterprise Linux	7	s390x	tcpdump	14:4.9.0-5.el7	tcpdump-14:4.9.0-5.el7.s390x.rpm
Red Hat Enterprise Linux	7	x86_64	tcpdump	14:4.9.0-5.el7	tcpdump-14:4.9.0-5.el7.x86_64.rpm
Red Hat Enterprise Linux	7	aarch64	tcpdump-debuginfo	14:4.9.0-5.el7	tcpdump-debuginfo-14:4.9.0-5.el7.aarch64.rpm
Red Hat Enterprise Linux	7	ppc64	tcpdump-debuginfo	14:4.9.0-5.el7	tcpdump-debuginfo-14:4.9.0-5.el7.ppc64.rpm
Red Hat Enterprise Linux	7	ppc64le	tcpdump-debuginfo	14:4.9.0-5.el7	tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le.rpm
Red Hat Enterprise Linux	7	s390x	tcpdump-debuginfo	14:4.9.0-5.el7	tcpdump-debuginfo-14:4.9.0-5.el7.s390x.rpm
Red Hat Enterprise Linux	7	x86_64	tcpdump-debuginfo	14:4.9.0-5.el7	tcpdump-debuginfo-14:4.9.0-5.el7.x86_64.rpm

Source	Link
access	www.access.redhat.com/security/cve/CVE-2016-7992
bugzilla	www.bugzilla.redhat.com/show_bug.cgi
nvd	www.nvd.nist.gov/vuln/detail/CVE-2016-7992
cve	www.cve.org/CVERecord

13 May 2026 01:17Current

7.4High risk

Vulners AI Score7.4

CVSS 27.5

CVSS 39.8

EPSS0.00925

tcpdump protocol decoding overflow vulnerabilities crafted packets live capture mode infinite loop out of bounds read integer overflow