Tcpdump: Security Vulnerabilities
The ISAKMP parser in tcpdump before 4.9.2 could enter an infinite loop due to bugs in print-isakmp.c, several functions.
CVSS Score
7.5
EPSS Score
0.011
Published
2017-09-14
The BGP parser in tcpdump before 4.9.2 has a buffer over-read in print-bgp.c:bgp_attr_print().
CVSS Score
9.8
EPSS Score
0.006
Published
2017-09-14
The RIPng parser in tcpdump before 4.9.2 has a buffer over-read in print-ripng.c:ripng_print().
CVSS Score
9.8
EPSS Score
0.006
Published
2017-09-14
The Juniper protocols parser in tcpdump before 4.9.2 has a buffer over-read in print-juniper.c, several functions.
CVSS Score
9.8
EPSS Score
0.006
Published
2017-09-14
The BGP parser in tcpdump before 4.9.2 has a buffer over-read in print-bgp.c:bgp_attr_print().
CVSS Score
9.8
EPSS Score
0.011
Published
2017-09-14
The DNS parser in tcpdump before 4.9.2 could enter an infinite loop due to a bug in print-domain.c:ns_print().
CVSS Score
7.5
EPSS Score
0.007
Published
2017-09-14
The PIMv2 parser in tcpdump before 4.9.2 has a buffer over-read in print-pim.c:pimv2_print().
CVSS Score
9.8
EPSS Score
0.006
Published
2017-09-14
The LLDP parser in tcpdump before 4.9.2 could enter an infinite loop due to a bug in print-lldp.c:lldp_private_8021_print().
CVSS Score
7.5
EPSS Score
0.015
Published
2017-09-14
tcpdump 4.9.0 has a heap-based buffer over-read in the lldp_print function in print-lldp.c, related to util-print.c.
CVSS Score
9.8
EPSS Score
0.01
Published
2017-07-23
tcpdump 4.9.0 has a heap-based buffer over-read in the pimv1_print function in print-pim.c.
CVSS Score
9.8
EPSS Score
0.01
Published
2017-07-23