Lucene search

K
ubuntucveUbuntu.comUB:CVE-2019-1010220
HistoryJul 22, 2019 - 12:00 a.m.

CVE-2019-1010220

2019-07-2200:00:00
ubuntu.com
ubuntu.com
11

0.001 Low

EPSS

Percentile

34.5%

tcpdump.org tcpdump 4.9.2 is affected by: CWE-126: Buffer Over-read. The
impact is: May expose Saved Frame Pointer, Return Address etc. on stack.
The component is: line 234: “ND_PRINT((ndo, “%s”, buf));”, in function
named “print_prefix”, in “print-hncp.c”. The attack vector is: The victim
must open a specially crafted pcap file.

OSVersionArchitecturePackageVersionFilename
ubuntu18.04noarchtcpdump< 4.9.3-0ubuntu0.18.04.1UNKNOWN
ubuntu14.04noarchtcpdump< 4.9.3-0ubuntu0.14.04.1+esm1) Available with Ubuntu Pro or Ubuntu Pro (Infra-onlyUNKNOWN
ubuntu16.04noarchtcpdump< 4.9.3-0ubuntu0.16.04.1UNKNOWN