Описание
The ZeroMQ parser in tcpdump before 4.9.0 has an integer overflow in print-zeromq.c:zmtp1_print_frame().
The ZeroMQ parser in tcpdump before 4.9.0 has an integer overflow in print-zeromq.c:zmtp1_print_frame().
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2016-7938
- https://access.redhat.com/errata/RHSA-2017:1871
- https://security.gentoo.org/glsa/201702-30
- https://www.mail-archive.com/debian-bugs-dist%40lists.debian.org/msg1494526.html
- https://www.mail-archive.com/debian-bugs-dist@lists.debian.org/msg1494526.html
- http://www.debian.org/security/2017/dsa-3775
- http://www.securityfocus.com/bid/95852
- http://www.securitytracker.com/id/1037755
Связанные уязвимости
CVSS3: 9.8
ubuntu
около 9 лет назад
The ZeroMQ parser in tcpdump before 4.9.0 has an integer overflow in print-zeromq.c:zmtp1_print_frame().
CVSS3: 6.5
redhat
около 9 лет назад
The ZeroMQ parser in tcpdump before 4.9.0 has an integer overflow in print-zeromq.c:zmtp1_print_frame().
CVSS3: 9.8
nvd
около 9 лет назад
The ZeroMQ parser in tcpdump before 4.9.0 has an integer overflow in print-zeromq.c:zmtp1_print_frame().
CVSS3: 9.8
debian
около 9 лет назад
The ZeroMQ parser in tcpdump before 4.9.0 has an integer overflow in p ...
oracle-oval
больше 8 лет назад
ELSA-2017-1871: tcpdump security, bug fix, and enhancement update (MODERATE)