Oracle Linux 8 : tcpdump (ELSA-2020-4760)

The remote Oracle Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2020-4760 advisory. 14:4.9.3-1 - Resolves: 1804063 - Rebase tcpdump to 4.9.3 to fix multiple CVEs Tenable has extracted the preceding description block directly from the...

tcpdump: Buffer over-read in print-icmp6.c

The Rx parser in tcpdump before 4.9.3 has a buffer over-read in print-rx.c:rxcachefind and rxcacheinsert...

Security update for tcpdump (important)

openSUSE Security Update: Security update for tcpdump Announcement ID: openSUSE-SU-2019:2344-1 Rating: important References: 1068716 1153098 1153332 Cross-References: CVE-2017-16808 CVE-2018-10103 CVE-2018-10105 CVE-2018-14461 CVE-2018-14462 CVE-2018-14463 CVE-2018-14464 CVE-2018-14465...

DEBIAN-CVE-2018-14882

The ICMPv6 parser in tcpdump before 4.9.3 has a buffer over-read in print-icmp6.c...

CVE-2018-14462

CVE-2018-14462: TCPDUMP has a buffer over-read in the ICMP parser (print-icmp.c:icmp_print()) in versions prior to 4.9.3. A fix was released with tcpdump 4.9.3; upgrade to 4.9.3 or later to remediate. Evidence in connected docs confirms the ICMP over-read and related tcpdump fixes.

CVE-2017-13012

The ICMP parser in tcpdump before 4.9.2 has a buffer over-read in print-icmp.c:icmpprint...