5 matches found
Linux Distros Unpatched Vulnerability : CVE-2017-13050
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The RPKI-Router parser in tcpdump before 4.9.2 has a buffer over-read in print-rpki- rtr.c:rpkirtrpduprint. CVE-2017-13050 Note that Nessus relies on the presen...
Internet Bug Bounty: CVE-2017-13050: The RPKI-Router parser in tcpdump before 4.9.2 has a buffer over-read in print-rpki-rtr.c:rpki_rtr_pdu_print()
Hello, The vulnerable code portion is linked below. The linked function is responsible for printing RPKI-Router packet payload information to the terminal e.g., stdout https://github.com/the-tcpdump-group/tcpdump/commit/83c64fce3a5226b080e535f5131a8a318f30e79b The issue may be reproduced as follo...
CVE-2017-13050
CVE-2017-13050 affects tcpdump up to version 4.9.2, due to a buffer over-read in the RPKI-Router parser (rpki_rtr_pdu_print in print-rpki-rtr.c). An attacker can trigger this remotely to obtain sensitive information from memory. The linked advisories list tcpdump fixes in 4.9.2 and note the RPKI-...
[SECURITY] [DSA 3971-1] tcpdump security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3971-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso September 13, 2017 https://www.debian.org/security/faq -...
Debian: Security Advisory (DSA-3971-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...