CVE-2015-2265

The removebadchars function in utils/cups-browsed.c in cups-filters before 1.0.66 allows remote IPP printers to execute arbitrary commands via consecutive shell metacharacters in the 1 model or 2 PDL. NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-2707...

DEBIAN-CVE-2015-2154

The osiprintcksum function in print-isoclns.c in the ethernet printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service out-of-bounds read and crash via a crafted 1 length, 2 offset, or 3 base pointer checksum value...

DEBIAN-CVE-2015-0261

Integer signedness error in the mobilityoptprint function in the IPv6 mobility printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service out-of-bounds read and crash or possibly execute arbitrary code via a negative length value...

Out-of-bounds

The rpkirtrpduprint function in print-rpki-rtr.c in the TCP printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service out-of-bounds read or write and crash via a crafted header length in an RPKI-RTR Protocol Data Unit PDU...

Code injection

The force printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via unspecified vectors...

CVE-2015-2154

The osiprintcksum function in print-isoclns.c in the ethernet printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service out-of-bounds read and crash via a crafted 1 length, 2 offset, or 3 base pointer checksum value...

CVE-2015-2153

The rpkirtrpduprint function in print-rpki-rtr.c in the TCP printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service out-of-bounds read or write and crash via a crafted header length in an RPKI-RTR Protocol Data Unit PDU...

CVE-2015-2154

The osiprintcksum function in print-isoclns.c in the ethernet printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service out-of-bounds read and crash via a crafted 1 length, 2 offset, or 3 base pointer checksum value...

CVE-2015-2155

The force printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via unspecified vectors...

CVE-2015-0261

tcpdump before 4.7.2 is affected by an integer signness error in mobility_opt_print within the IPv6 mobility printer, allowing remote attackers to cause denial of service via an out-of-bounds read and crash, or possibly execute arbitrary code via a negative length value. Affected product is tcpdu...

tcpdump denial of service vulnerability (CNVD-2015-01967)

tcpdump is a sniffer tool that runs at the command line. It allows users to intercept and display TCP/IP and other packets sent or received over a network connection to that computer. A remote denial of service vulnerability exists in tcpdump's ethernet printer, which can be exploited by an...

tcpdump denial of service vulnerability (CNVD-2015-01965)

tcpdump is a sniffer tool that runs at the command line. It allows users to intercept and display TCP/IP and other packets sent or received over a network connection to that computer. A remote denial of service vulnerability exists in tcpdump's force printer, which can be exploited by an attacker...

UBUNTU-CVE-2015-2155

The force printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via unspecified vectors...

UBUNTU-CVE-2015-2154

The osiprintcksum function in print-isoclns.c in the ethernet printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service out-of-bounds read and crash via a crafted 1 length, 2 offset, or 3 base pointer checksum value...

UBUNTU-CVE-2015-0261

Integer signedness error in the mobilityoptprint function in the IPv6 mobility printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service out-of-bounds read and crash or possibly execute arbitrary code via a negative length value...

tcpdump: multiple issues

CVE-2014-8767 denial of service Integer underflow in the olsrprint function when in verbose mode, allows remote attackers to cause a denial of service crash via a crafted length value in an OLSR frame. - CVE-2014-8768 denial of service Multiple Integer underflows in the geonetprint function, when...

[USN-2532-1] cups-filters vulnerability

========================================================================== Ubuntu Security Notice USN-2532-1 March 16, 2015 cups-filters vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: ...

[SECURITY] [DLA 174-1] tcpdump security update

Package : tcpdump Version : tcpdump4.1.1-1+deb6u2 CVE ID : CVE-2015-0261 CVE-2015-2154 CVE-2015-2155 Several issues have been discovered with tcpdump in the way it handled some printer protocols. Those issues can lead to denial of service, or, potentially, execution of arbitrary code. CVE-2015-02...

Ubuntu: Security Advisory (USN-2532-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

USN-2532-1 cups-filters vulnerability

It was discovered that cups-browsed incorrectly filtered remote printer names and strings. A remote attacker could use this issue to possibly execute arbitrary commands...