CVE-2017-13038

The PPP parser in tcpdump before 4.9.2 has a buffer over-read in print-ppp.c:handle_mlppp().
Configurations

Configuration 1 (hide)

cpe:2.3:a:tcpdump:tcpdump:*:*:*:*:*:*:*:*

History

21 Nov 2024, 03:10

Type Values Removed Values Added
References () http://www.debian.org/security/2017/dsa-3971 - () http://www.debian.org/security/2017/dsa-3971 -
References () http://www.securitytracker.com/id/1039307 - Third Party Advisory, VDB Entry () http://www.securitytracker.com/id/1039307 - Third Party Advisory, VDB Entry
References () http://www.tcpdump.org/tcpdump-changes.txt - Vendor Advisory () http://www.tcpdump.org/tcpdump-changes.txt - Vendor Advisory
References () https://access.redhat.com/errata/RHEA-2018:0705 - () https://access.redhat.com/errata/RHEA-2018:0705 -
References () https://github.com/the-tcpdump-group/tcpdump/commit/7335163a6ef82d46ff18f3e6099a157747241629 - Issue Tracking, Patch, Third Party Advisory () https://github.com/the-tcpdump-group/tcpdump/commit/7335163a6ef82d46ff18f3e6099a157747241629 - Issue Tracking, Patch, Third Party Advisory
References () https://security.gentoo.org/glsa/201709-23 - () https://security.gentoo.org/glsa/201709-23 -
References () https://support.apple.com/HT208221 - () https://support.apple.com/HT208221 -

Information

Published : 2017-09-14 06:29

Updated : 2024-11-21 03:10


NVD link : CVE-2017-13038

Mitre link : CVE-2017-13038

CVE.ORG link : CVE-2017-13038


JSON object : View

Products Affected

tcpdump

  • tcpdump
CWE
CWE-125

Out-of-bounds Read