172 matches found
CVE-2020-8037
CVE-2020-8037 affects tcpdump’s ppp decapsulator and can cause unbounded memory allocation, leading to DoS. Public documents corroborate that tcpdump 4.9.3 and later patch levels address this issue by upgrading the tcpdump package (e.g., 4.9.3-3 in some distributions; Ubuntu/Debian updates list 4...
CVE-2018-19519
CVE-2018-19519 – tcpdump 4.9.2 contains a stack-based buffer over-read in the function print_prefix (print-hncp.c) triggered by specially crafted packets due to missing initialization. The issue allows reading memory beyond the buffer, potentially causing a crash or other instability. Documents c...
CVE-2018-14463
CVE-2018-14463 affects tcpdump before 4.9.3 with a buffer over-read in the VRRP parser (print-vrrp.c:vrrp_print) for VRRP version 2. The connected AlmaLinux advisory confirms the vulnerability and points to upgrading tcpdump to 4.9.3 or later as a remediation; no exploitation details are provided...
CVE-2018-16301
CVE-2018-16301 affects tcpdump/libpcap via a buffer overflow in tcpdump.c:read_infile. Exploitation requires a local attacker to create a 4GB file and pass it to -F, enabling potential data corruption or code execution. Remediation in affected packages commonly involves upgrading tcpdump to 4.99....
CVE-2018-14462
CVE-2018-14462: TCPDUMP has a buffer over-read in the ICMP parser (print-icmp.c:icmp_print()) in versions prior to 4.9.3. A fix was released with tcpdump 4.9.3; upgrade to 4.9.3 or later to remediate. Evidence in connected docs confirms the ICMP over-read and related tcpdump fixes.
CVE-2018-16300
The vulnerability CVE-2018-16300 affects tcpdump prior to version 4.9.3, where the BGP parser (print-bgp.c:bgp_attr_print) allows stack consumption due to unlimited recursion. Exploitation would cause a stack exhaustion condition. Remediation: upgrade tcpdump to 4.9.3 or newer (as reflected in th...
CVE-2018-14469
CVE-2018-14469 affects tcpdump prior to 4.9.3. Root cause: buffer over-read in the IKEv1 parser (print-isakmp.c:ikev1_n_print()). Affected: tcpdump versions before 4.9.3. Impact stated in related advisories for tcpdump family includes potential crashes or instability; exploitation details are not...
CVE-2018-16229
CVE-2018-16229 (tcpdump) affects tcpdump before 4.9.3, with a buffer over-read in print-dccp.c:dccp_print_option() (DCCP parser). The issue is listed among multiple tcpdump vulnerabilities and is addressed by upgrading to tcpdump 4.9.3 or newer (as per ALMA Linux advisory noting CVE-2018-16229 am...
CVE-2018-14465
CVE-2018-14465 affects tcpdump before 4.9.3. The RSVP parser’s rsvp_obj_print() performs a buffer over-read, as described in the provided sources. The vulnerability is addressed by upgrading tcpdump to version 4.9.3 or newer (and related fixes in the same release), per multiple advisories and sec...
CVE-2019-15166
CVE-2019-15166 affects tcpdump: lmp_print_data_link_subobjs() in print-lmp.c before 4.9.3 lacks bounds checks, enabling memory corruption that could crash the application when processing crafted data. Connected sources confirm this specific subroutine and bug class, and multiple advisories refere...
CVE-2018-14468
tcpdump before 4.9.3 contains a buffer over-read in the FRF.16 parser (print-fr.c:mfr_print()). Upgrading to tcpdump 4.9.3 (or later) is the remediation mentioned in the accompanying advisories for affected platforms.
CVE-2018-16451
CVE-2018-16451 is a buffer over-read in tcpdump's SMB parser (print-smb.c:print_trans) for SMB slots; Debian/AlmaLinux advisories show it alongside other tcpdump issues fixed by upgrading to tcpdump 4.9.3 (and libpcap 1.9.1). The available connected documents confirm the vulnerability and the fix...
CVE-2018-16228
CVE-2018-16228 affects tcpdump prior to version 4.9.3. The HNCP parser (print-hncp.c:print_prefix) may read beyond the allocated buffer, exposing a buffer over-read vulnerability with potential impact on availability. The vulnerability is confirmed by multiple sources (e.g., tcpdump advisories an...
CVE-2018-10103
tcpdump before 4.9.3 is affected by CVE-2018-10103 (SMB data printing mishandling). The issue is fixed in tcpdump 4.9.3 and later; remediation is to upgrade to 4.9.3 or newer. Public advisories (Debian DSA-4547-1, DLA-1955-1) confirm the fix in 4.9.3-1~deb9u1/4.9.3-1~deb10u1; AlmaLinux advisory A...
CVE-2018-14880
tcpdump has a confirmed vulnerability CVE-2018-14880 in the OSPFv3 parser: a buffer over-read in ospf6_print_lshdr() inside print-ospf6.c, affecting tcpdump before version 4.9.3. Connected advisories (e.g., AlmaLinux ALSA-2020:4760, Debian DSA-4547-1, DLA-1955-1) reference this CVE and span multi...
CVE-2018-16227
CVE-2018-16227 affects tcpdump up to v4.9.3. The vulnerability is a buffer over-read in the IEEE 802.11 Mesh Flags handling (print-802_11.c). Impact is memory read exposure with potential impact on affected systems; the exposed documentation notes only memory read, not code execution. Remediation...
CVE-2018-14461
CVE-2018-14461 affects tcpdump up to version 4.9.3, where the LDP parser has a buffer over-read in print-ldp.c:ldp_tlv_print(). The issue is triggered while parsing LDP TLVs and can read memory beyond bounds. The vulnerability is addressed by upgrading to tcpdump 4.9.3 and libpcap 1.9.1 (per mult...
CVE-2018-14466
tcpdump (affected up to version 4.9.2) contains a buffer over-read in the Rx parser due to rx_cache_find() and rx_cache_insert() in print-rx.c, which is triggered by parsing RX data. The CVE is CVE-2018-14466. The vulnerability is fixed in tcpdump 4.9.3 (and related updates in downstream packages...
CVE-2018-14879
tcpdump (affected: before 4.9.3) has a buffer overflow in tcpdump.c:get_next_file(), tracked as CVE-2018-14879. The issue is one of multiple parsing bugs in the 4.9.x series and is documented in security advisories (e.g., AlmaLinux ALSA-2020:4760) as an out-of-bounds read/write in get_next_file()...
CVE-2018-16452
CVE-2018-16452 affects tcpdump up to version 4.9.3, where the SMB parser smbutil.c:smb_fdata() may recurse, causing stack exhaustion. The issue is documented across multiple connected sources (AlmaLinux fix notes; Debian security advisories; Cloud Foundry USN; CNVD/Debian trackers) indicating the...
CVE-2018-14467
CVE-2018-14467 affects tcpdump: the BGP parser (print-bgp.c:bgp_capabilities_print()) can over-read the buffer for BGP_CAPCODE_MP in builds before 4.9.3. Affected: tcpdump up to version 4.9.3. Impact per sources: potential crash or instability (buffer over-read). Remediation: upgrade to tcpdump 4...
CVE-2018-14464
Concretely affected: tcpdump prior to 4.9.3 (on multiple platforms as reflected in advisories). The CVE-2018-14464 issue is a buffer over-read in the LMP parser, specifically in print-lmp.c:lmp_print_data_link_subobjs(). The vulnerability arises from improper bounds checking in the LMP data handl...
CVE-2018-16230
tcpdump's CVE-2018-16230 affects the BGP parser in tcpdump prior to version 4.9.3, caused by a buffer over-read in print-bgp.c:bgp_attr_print() for MP_REACH_NLRI. Impact is described as a potential crash/denial of service with high-severity CVSS vectors in multiple advisories. The publicly known ...
CVE-2018-14882
CVE-2018-14882 affects tcpdump before 4.9.3, with a buffer over-read in the ICMPv6 parser (print-icmp6.c). This can cause a crash or, in some contexts, enable arbitrary code execution as part of the suite of tcpdump issues. The linked advisory (tcpdump updates 4.9.3) and Cloud Foundry USN note th...
CVE-2019-1010220
CVE-2019-1010220 affects tcpdump 4.9.2, caused by CWE-126 Buffer Over-read in print-hncp.c (print_prefix), potentially exposing Saved Frame Pointer and Return Address on the stack. Attack requires the user to open a specially crafted pcap file. Multiple vulnerability advisories (USN/SUSE/Nessus/O...
CVE-2018-10105
CVE-2018-10105 affects the tcpdump utility. Affected: tcpdump before 4.9.3 with a flaw in printing SMB data, leading to potential memory impact (reported as high/critical in CVSS terms). Root cause: mishandling of SMB data during printing. Public details in connected sources (e.g., AlmaLinux ALSA...
CVE-2018-14881
CVE-2018-14881 concerns the BGP parser in tcpdump prior to 4.9.3. The issue is a buffer over-read in print-bgp.c:bgp_capabilities_print() when handling BGP_CAPCODE_RESTART. Affected product: tcpdump (and related tcpdump/libpcap stack) with versions before 4.9.3. Consequences stated in sources ind...
CVE-2018-14470
The CVE-2018-14470 issue affects tcpdump prior to 4.9.3, where the Babel parser in print-babel.c:babel_print_v2() triggers a buffer over-read. Public advisories and vendor bulletins (AlmaLinux, Debian, Cloud Foundry USN, IBM AIX) confirm this vulnerability as part of a collection of tcpdump issue...
CVE-2017-16808
CVE-2017-16808 affects tcpdump up to version 4.9.2, where a heap-based buffer over-read can occur in aoe_print (print-aoe.c) and in lookup_emem (addrtoname.c). The result is a potential crash or memory corruption; exploitation status is not detailed in the provided documents. The connected source...
CVE-2023-1801
CVE-2023-1801 concerns tcpdump’s SMB protocol decoding, where the SMB protocol decoder in tcpdump 4.99.3 can perform an out-of-bounds write when parsing a crafted network packet. The vulnerability is network-exploitable and impacts systems running tcpdump against SMB traffic; the NVD metrics show...
CVE-2017-13029
CVE-2017-13029 affects tcpdump prior to 4.9.2, due to a buffer over-read in the PPP parser (print_ccp_config_options). An attacker could potentially obtain sensitive information by sending a crafted packet. A fix is available in tcpdump 4.9.2 (e.g., Debian/DSA-3971-1). Validation details and patc...
CVE-2017-13051
CVE-2017-13051 refers to a buffer over-read in tcpdump’s RSVP parser (print-rsvp.c:rsvp_obj_print()) present before version 4.9.2. The connected documents confirm this is a tcpdump parser vulnerability affecting RSVP parsing, with the issue described as a memory over-read/over-read risk in the RS...
CVE-2017-5203
CVE-2017-5203 affects tcpdump: a buffer overflow in the BOOTP parser (print-bootp.c:bootp_print()) exists in tcpdump before 4.9.0. Several connected advisories confirm this family of issues and indicate the fix is to upgrade to tcpdump 4.9.0 or later. The CentOS advisory and Debian/Arch Linux sec...
CVE-2016-8575
tcpdump contains a buffer overflow in the Q.933 parser (print-fr.c:q933_print) prior to version 4.9.0. An attacker could trigger this remotely by sending a crafted argument, potentially executing arbitrary code or causing a crash. The vulnerability is tracked as CVE-2016-8575 (and is part of a br...
CVE-2017-13053
CVE-2017-13053 affects tcpdump prior to 4.9.2, due to a buffer over-read in the BGP parser (print-bgp.c:decode_rt_routing_info). The issue is in tcpdump’s BGP decoding path and upgraded builds (tcpdump 4.9.2 or later) are issued as the fix per linked advisories; exploitation details are not expli...
CVE-2017-5482
tcpdump (affected up to version 4.9.0) has a buffer overflow in the Q.933 parser (print-fr.c:q933_print()) that could allow remote code execution or a crash. The CVE entry CVE-2017-5482 is tied to this issue, and connected advisories indicate upgrading tcpdump to 4.9.0 fixes the vulnerability. Ot...
CVE-2017-5485
CVE-2017-5485 : tcpdump before 4.9.0 contains a buffer overflow in the ISO CLNS parser (addrtoname.c:lookup_nsap). The vulnerability allows remote attackers to potentially execute arbitrary code or crash the application by crafting overly long inputs. Public advisories confirm the issue as part o...
CVE-2017-5204
tcpdump (IPv6 parser) is affected by a buffer overflow in ip6_print() prior to version 4.9.0, allowing potential arbitrary code execution or crash via crafted input. The public details consistently reference CVE-2017-5204 and indicate the issue is mitigated by upgrading tcpdump to 4.9.0 or later....
CVE-2017-5484
CVE-2017-5484 affects tcpdump prior to 4.9.0, specifically the ATM parser in print-atm.c:sig_print(). The vulnerability is a buffer overflow that could allow a remote attacker to execute arbitrary code or crash the application by sending overly long input. Affected software is tcpdump (pre-4.9.0)...
CVE-2016-7924
tcpdump (before 4.9.0) is affected by CVE-2016-7924 due to a buffer overflow in the ATM parser: print-atm.c:oam_print(). An attacker may overflow a buffer by sending an overly long argument, potentially executing arbitrary code or crashing the application. Remediation per the documents is to upgr...
CVE-2017-5486
tcpdump before 4.9.0 is affected by a buffer overflow in the ISO CLNS parser (print-isoclns.c:clnp_print()), allowing remote attackers to craft packets that may execute arbitrary code or crash the program. This issue is detailed across multiple advisories (CVE-2017-5486; related CVEs such as 2016...
CVE-2016-7973
CVE-2016-7973 affects tcpdump up to version 4.9.0, where the AppleTalk parser (print-atalk.c) contains a buffer overflow vulnerability. An attacker could exploit the overly long AppleTalk argument to overflow a buffer and potentially execute arbitrary code or crash the application. The vulnerabil...
CVE-2017-5202
tcpdump-4.9.0 fixes CVE-2017-5202: buffer overflow in ISO CLNS parser (print-isoclns.c:clnp_print()) that could allow remote code execution or crash. Affected: tcpdump before 4.9.0; exploit via overly long argument. Remediation: upgrade to tcpdump 4.9.0 or later per multiple advisories (CentOS, D...
CVE-2016-7932
CVE-2016-7932 affects tcpdump’s PIM parser. A buffer overflow in print-pim.c:pimv2_check_checksum() could allow a remote attacker to overflow a buffer and execute arbitrary code or crash tcpdump. Affected versions are tcpdump prior to 4.9.0. Remediation: upgrade tcpdump to version 4.9.0 or newer ...
CVE-2016-7933
CVE-2016-7933 affects tcpdump prior to 4.9.0. The PPP parser in print-ppp.c:ppp_hdlc_if_print() has a buffer overflow vulnerability due to improper bounds checking, allowing a remote attacker to overflow a buffer and potentially execute arbitrary code or crash tcpdump. Remediation: upgrade tcpdum...
CVE-2016-7931
CVE-2016-7931 affects tcpdump and its MPLS parser. The vulnerability is a buffer overflow in print-mpls.c:mpls_print() present in tcpdump versions before 4.9.0, potentially allowing remote code execution or crash via crafted MPLS data. A fix is available in tcpdump 4.9.0 (upgrade recommended). Ot...
CVE-2016-7936
CVE-2016-7936: tcpdump before 4.9.0 has a buffer overflow in the UDP parser (print-udp.c:udp_print). A crafted packet could overflow a buffer and allow arbitrary code execution or crash. Affected upstream fixed by upgrading to tcpdump 4.9.0; various advisories (CentOS, Debian, Alpine) reference t...
CVE-2017-13038
tcpdump CVE-2017-13038: A buffer over-read in the PPP parser (print-ppp.c handle_mlppp) affects tcpdump versions before 4.9.2. The issue can enable information disclosure and potential crash. Affected component: PPP parser in tcpdump; root cause: out-of-bounds read in PPP handling. Impact per CVS...
CVE-2016-7930
CVE-2016-7930 affects tcpdump, specifically the LLC/SNAP parser in print-llc.c:llc_print(). A crafted network packet can trigger a buffer overflow, potentially allowing remote code execution or a crash. Remediation: upgrade tcpdump to version 4.9.0 or later; multiple advisories confirm this fix (...
CVE-2016-7974
CVE-2016-7974 : tcpdump before 4.9.0 is affected by a buffer overflow in the IP parser (print-ip.c). An attacker could send an overly long input to trigger the overflow, potentially executing arbitrary code or crashing tcpdump. The connected advisory details confirm this CVE is tied to tcpdump’s ...