CVE-2017-16808
Summary
| CVE | CVE-2017-16808 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2017-11-13 21:29:00 UTC |
| Updated | 2023-11-07 02:40:00 UTC |
| Description | tcpdump before 4.9.3 has a heap-based buffer over-read related to aoe_print in print-aoe.c and lookup_emem in addrtoname.c. |
Risk And Classification
Problem Types: CWE-125
NVD Known Affected Configurations (CPE 2.3)
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| [security-announce] openSUSE-SU-2019:2344-1: important: Security update | SUSE | lists.opensuse.org | |
| [security-announce] openSUSE-SU-2019:1964-1: moderate: Security update f | SUSE | lists.opensuse.org | |
| [SECURITY] Fedora 29 Update: tcpdump-4.9.3-1.fc29 - package-announce - Fedora Mailing-Lists | lists.fedoraproject.org | ||
| Full Disclosure: APPLE-SA-2019-12-10-3 macOS Catalina 10.15.2, Security Update 2019-002 Mojave, Security Update 2019-007 High Sierra | FULLDISC | seclists.org | |
| [SECURITY] Fedora 29 Update: tcpdump-4.9.3-1.fc29 - package-announce - Fedora Mailing-Lists | FEDORA | lists.fedoraproject.org | |
| Bugtraq: [slackware-security] tcpdump (SSA:2019-274-01) | BUGTRAQ | seclists.org | |
| USN-4252-1: tcpdump vulnerabilities | Ubuntu security notices | UBUNTU | usn.ubuntu.com | |
| [SECURITY] Fedora 31 Update: tcpdump-4.9.3-1.fc31 - package-announce - Fedora Mailing-Lists | FEDORA | lists.fedoraproject.org | |
| tcpdump/CHANGES at tcpdump-4.9 · the-tcpdump-group/tcpdump · GitHub | MISC | github.com | |
| USN-4252-2: tcpdump vulnerabilities | Ubuntu security notices | UBUNTU | usn.ubuntu.com | |
| About the security content of macOS Catalina 10.15.2, Security Update 2019-002 Mojave, Security Update 2019-007 High Sierra - Apple Support | CONFIRM | support.apple.com | |
| [SECURITY] Fedora 30 Update: tcpdump-4.9.3-1.fc30 - package-announce - Fedora Mailing-Lists | lists.fedoraproject.org | ||
| [security-announce] openSUSE-SU-2019:2348-1: important: Security update | SUSE | lists.opensuse.org | |
| [SECURITY] Fedora 30 Update: tcpdump-4.9.3-1.fc30 - package-announce - Fedora Mailing-Lists | FEDORA | lists.fedoraproject.org | |
| Tcpdump Heap Overread in 'addrtoname.c' Lets Remote Users Cause the Target Service to Crash - SecurityTracker | SECTRACK | www.securitytracker.com | Third Party Advisory, VDB Entry |
| Heap Overread triggered by sending specific packets over a interface being monitored by TCPDump, as well as while trying to parse the pcap file of these packets · Issue #645 · the-tcpdump-group/tcpdump · GitHub | CONFIRM | github.com | Third Party Advisory |
| [SECURITY] Fedora 31 Update: tcpdump-4.9.3-1.fc31 - package-announce - Fedora Mailing-Lists | lists.fedoraproject.org | ||
| Slackware Security Advisory - tcpdump Updates ≈ Packet Storm | MISC | packetstormsecurity.com | |
| Bugtraq: APPLE-SA-2019-12-10-3 macOS Catalina 10.15.2, Security Update 2019-002 Mojave, Security Update 2019-007 High Sierra | BUGTRAQ | seclists.org | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.