15 matches found
Linux Distros Unpatched Vulnerability : CVE-2018-14879
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The command-line argument parser in tcpdump before 4.9.3 has a buffer overflow in tcpdump.c:getnextfile. CVE-2018-14879 Note that Nessus relies on the presence ...
Rocky Linux 8 : tcpdump (RLSA-2020:4760)
The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2020:4760 advisory. - tcpdump before 4.9.3 mishandles the printing of SMB data issue 1 of 2. CVE-2018-10103 - tcpdump before 4.9.3 mishandles the printing of SMB data issue...
K51512510: tcpdump vulnerability CVE-2018-14879
Security Advisory Description The command-line argument parser in tcpdump before 4.9.3 has a buffer overflow in tcpdump.c:getnextfile. CVE-2018-14879 Impact A local attacker may be able to corrupt data, run arbitrary code, or cause the program to terminate. Security Advisory Status F5 Product...
SUSE SLES12 Security Update : tcpdump (SUSE-SU-2020:3360-1)
This update for tcpdump fixes the following issues : CVE-2020-8037: Fixed an issue where PPP decapsulator did not allocate the right buffer size bsc1178466. The previous update of tcpdump already fixed variuous Buffer overflow/overread vulnerabilities bsc1153098, bsc1153332 CVE-2017-16808 AoE...
Moderate: tcpdump security, bug fix, and enhancement update
The tcpdump packages contain the tcpdump utility for monitoring network traffic. The tcpdump utility can capture and display the packet headers on a particular network interface or on all interfaces. The following packages have been upgraded to a later upstream version: tcpdump 4.9.3. BZ1804063...
Huawei EulerOS: Security Advisory for tcpdump (EulerOS-SA-2019-2305)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
macOS 10.15.x < 10.15.2 / 10.14.x < 10.14.6 Security Update 2019-002 / 10.13.x < 10.13.6 Security Update 2019-007
The remote host is running a version of macOS / Mac OS X that is 10.13.x prior to 10.13.6 Security Update 2019-007, 10.14.x prior to 10.14.6 Security Update 2019-002, or 10.15.x prior to 10.15.2. It is, therefore, affected by multiple vulnerabilities : - slapd in OpenLDAP before 2.4.30 allows...
Apple Mac OS X Security Updates (HT210788)-02
Apple Mac OS X is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Internet Bug Bounty: tcpdump: CVE-2018-14879 - buffer overflow in tcpdump.c:get_next_file()
The release of tcpdump 4.9.3 brought many bug fixes, including one I submitted, CVE-2018-14879. The command-line argument parser in tcpdump before 4.9.3 has a buffer overflow in tcpdump.c:getnextfile. ==2288==ERROR: AddressSanitizer: stack-buffer-overflow on address 0x7ffe363769bf at pc...
Debian DSA-4547-1 : tcpdump - security update
Several vulnerabilities have been discovered in tcpdump, a command-line network traffic analyzer. These vulnerabilities might result in denial of service or, potentially, execution of arbitrary code. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were...
tcpdump < 4.9.3 Multiple Vulnerabilities
tcpdump is prone to multiple vulnerabilities. Copyright C 2019 Greenbone Networks GmbH SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation;...
Security update for tcpdump (important)
openSUSE Security Update: Security update for tcpdump Announcement ID: openSUSE-SU-2019:2344-1 Rating: important References: 1068716 1153098 1153332 Cross-References: CVE-2017-16808 CVE-2018-10103 CVE-2018-10105 CVE-2018-14461 CVE-2018-14462 CVE-2018-14463 CVE-2018-14464 CVE-2018-14465...
SUSE SLED15 / SLES15 Security Update : tcpdump (SUSE-SU-2019:2674-1)
This update for tcpdump fixes the following issues : CVE-2017-16808: Fixed a heap-based buffer over-read related to aoeprint and lookupemem bsc1068716 bsc1153098. CVE-2018-10103: Fixed a mishandling of the printing of SMB data bsc1153098. CVE-2018-10105: Fixed a mishandling of the printing of SMB...
[SECURITY] [DLA 1955-1] tcpdump security update
Package : tcpdump Version : 4.9.3-1deb8u1 CVE ID : CVE-2018-10103 CVE-2018-10105 CVE-2018-14461 CVE-2018-14462 CVE-2018-14463 CVE-2018-14464 CVE-2018-14465 CVE-2018-14466 CVE-2018-14467 CVE-2018-14468 CVE-2018-14469 CVE-2018-14470 CVE-2018-14879 CVE-2018-14880 CVE-2018-14881 CVE-2018-14882...
CVE-2018-14879
tcpdump (affected: before 4.9.3) has a buffer overflow in tcpdump.c:get_next_file(), tracked as CVE-2018-14879. The issue is one of multiple parsing bugs in the 4.9.x series and is documented in security advisories (e.g., AlmaLinux ALSA-2020:4760) as an out-of-bounds read/write in get_next_file()...