user/tcpdump: multiple vulnerabilities
Bugzilla ID | 149 |
Alias(es) | CVE-2017-16808, CVE-2019-1010220 |
Reporter | Max Rees (sroracle) |
Assignee | Max Rees (sroracle) |
Reported | 2019-07-31 07:10:44 -0500 |
Modified | 2019-08-04 19:25:45 -0500 |
Status | RESOLVED FIXED |
Version | 1.0-BETA3 |
Hardware | Adélie Linux / All |
Importance | --- / normal |
Description
CVE-2017-16808: https://nvd.nist.gov/vuln/detail/CVE-2017-16808
tcpdump 4.9.2 has a heap-based buffer over-read related to aoe_print
in print-aoe.c and lookup_emem in addrtoname.c.
CVE-2019-1010220: https://nvd.nist.gov/vuln/detail/CVE-2019-1010220
tcpdump.org tcpdump 4.9.2 is affected by: CWE-126: Buffer Over-read.
The impact is: May expose Saved Frame Pointer, Return Address etc. on
stack. The component is: line 234: "ND_PRINT((ndo, "%s", buf));", in
function named "print_prefix", in "print-hncp.c". The attack vector
is: The victim must open a specially crafted pcap file.