tcpdump: heap-based buffer over-read in the lldp_print

tcpdump 4.9.0 has a heap-based buffer over-read in the lldpprint function in print-lldp.c, related to util-print.c...

Tcpdump buffer overflow vulnerability (CNVD-2017-27596)

Tcpdump is a set of sniffing tools developed by the Tcpdump team that run under the command line. The tool allows users to intercept and display TCP/IP and other packets sent or received over a network connection to that computer. A buffer overflow vulnerability exists in the 'tok2strbuf' functio...

CVE-2017-13011

Several protocol parsers in tcpdump before 4.9.2 could cause a buffer overflow in util-print.c:bittok2strinternal...

ALPINE-CVE-2016-7993

A bug in util-print.c:reltsprint in tcpdump before 4.9.0 could cause a buffer overflow in multiple protocol parsers DNS, DVMRP, HSRP, IGMP, lightweight resolver protocol, PIM...

CVE-2016-7993

A bug in util-print.c:reltsprint in tcpdump before 4.9.0 could cause a buffer overflow in multiple protocol parsers DNS, DVMRP, HSRP, IGMP, lightweight resolver protocol, PIM...