Lucene search
K

11 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2017-12989

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The RESP parser in tcpdump before 4.9.2 could enter an infinite loop due to a bug in print- resp.c:respgetlength. CVE-2017-12989 Note that Nessus relies on the...

7.5CVSS7AI score0.02313EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2017/10/30 12:0 a.m.29 views

openSUSE Security Update : tcpdump (openSUSE-2017-1205)

This update for tcpdump to version 4.9.2 fixes several issues. These security issues were fixed : - CVE-2017-11108: Prevent remote attackers to cause DoS heap-based buffer over-read and application crash via crafted packet data. The crash occured in the EXTRACT16BITS function, called from the...

9.8CVSS7.7AI score0.06196EPSS
Exploits3References92
Tenable Nessus
Tenable Nessus
added 2017/10/27 12:0 a.m.33 views

SUSE SLED12 / SLES12 Security Update : tcpdump (SUSE-SU-2017:2854-1)

This update for tcpdump to version 4.9.2 fixes several issues. These security issues were fixed : - CVE-2017-11108: Prevent remote attackers to cause DoS heap-based buffer over-read and application crash via crafted packet data. The crash occured in the EXTRACT16BITS function, called from the...

9.8CVSS7.7AI score0.06196EPSS
Exploits3References183
Cloud Foundry
Cloud Foundry
added 2017/09/21 12:0 a.m.60 views

USN-3415-1: tcpdump vulnerabilities | Cloud Foundry

Severity Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 14.04 Description Wilfried Kirsch discovered a buffer overflow in the SLIP decoder in tcpdump. A remote attacker could use this to cause a denial of service application crash or possibly execute arbitrary code...

9.8CVSS9.7AI score0.06196EPSS
Exploits3
Debian
Debian
added 2017/09/15 10:18 a.m.64 views

[SECURITY] [DLA 1097-1] tcpdump security update

Package : tcpdump Version : 4.9.2-1deb7u1 CVE ID : CVE-2017-12894 CVE-2017-12895 CVE-2017-12896 CVE-2017-12897 CVE-2017-12898 CVE-2017-12899 CVE-2017-12900 CVE-2017-12901 CVE-2017-12902 CVE-2017-12985 CVE-2017-12986 CVE-2017-12987 CVE-2017-12988 CVE-2017-12989 CVE-2017-12990 CVE-2017-12991...

9.8CVSS7.2AI score0.04639EPSS
Exploits0
OSV
OSV
added 2017/09/14 6:29 a.m.20 views

CVE-2017-12989

The RESP parser in tcpdump before 4.9.2 could enter an infinite loop due to a bug in print-resp.c:respgetlength...

7.5CVSS9.2AI score
Exploits0References7
CVE
CVE
added 2017/09/14 6:0 a.m.127 views

CVE-2017-12989

The CVE-2017-12989 issue affects tcpdump before 4.9.2, where the RESP parser (print-resp.c:resp_get_length()) could enter an infinite loop, enabling a denial of service. Public sources show CVSSv3 base 7.5 (HIGH) with network access, low attack complexity, no authentication, and availability impa...

7.5CVSS8.2AI score0.02313EPSS
Exploits0References7Affected Software1
Debian CVE
Debian CVE
added 2017/09/14 6:0 a.m.23 views

CVE-2017-12989

The RESP parser in tcpdump before 4.9.2 could enter an infinite loop due to a bug in print-resp.c:respgetlength...

7.5CVSS8.6AI score0.02313EPSS
Exploits0
Debian
Debian
added 2017/09/13 5:4 a.m.37 views

[SECURITY] [DSA 3971-1] tcpdump security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3971-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso September 13, 2017 https://www.debian.org/security/faq -...

7.5CVSS2.9AI score0.06196EPSS
Exploits3
OpenVAS
OpenVAS
added 2017/09/12 12:0 a.m.41 views

Debian: Security Advisory (DSA-3971-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.3AI score0.06196EPSS
Exploits3References3
Slackware Linux
Slackware Linux
added 2017/09/08 6:6 p.m.68 views

[slackware-security] tcpdump

New tcpdump packages are available for Slackware 13.37, 14.0, 14.1, 14.2, and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/tcpdump-4.9.2-i586-1slack14.2.txz: Upgraded. This update fixes bugs and many security issues see the included...

9.8CVSS9.4AI score0.06196EPSS
Exploits3
Rows per page
Query Builder