Описание
Security update for tcpdump
This update for tcpdump fixes the following issues:
- CVE-2017-16808: Fixed a heap-based buffer over-read related to aoe_print and lookup_emem (bsc#1068716 bsc#1153098).
- CVE-2018-10103: Fixed a mishandling of the printing of SMB data (bsc#1153098).
- CVE-2018-10105: Fixed a mishandling of the printing of SMB data (bsc#1153098).
- CVE-2018-14461: Fixed a buffer over-read in print-ldp.c:ldp_tlv_print (bsc#1153098).
- CVE-2018-14462: Fixed a buffer over-read in print-icmp.c:icmp_print (bsc#1153098).
- CVE-2018-14463: Fixed a buffer over-read in print-vrrp.c:vrrp_print (bsc#1153098).
- CVE-2018-14464: Fixed a buffer over-read in print-lmp.c:lmp_print_data_link_subobjs (bsc#1153098).
- CVE-2018-14465: Fixed a buffer over-read in print-rsvp.c:rsvp_obj_print (bsc#1153098).
- CVE-2018-14466: Fixed a buffer over-read in print-rx.c:rx_cache_find (bsc#1153098).
- CVE-2018-14467: Fixed a buffer over-read in print-bgp.c:bgp_capabilities_print (bsc#1153098).
- CVE-2018-14468: Fixed a buffer over-read in print-fr.c:mfr_print (bsc#1153098).
- CVE-2018-14469: Fixed a buffer over-read in print-isakmp.c:ikev1_n_print (bsc#1153098).
- CVE-2018-14470: Fixed a buffer over-read in print-babel.c:babel_print_v2 (bsc#1153098).
- CVE-2018-14879: Fixed a buffer overflow in the command-line argument parser (bsc#1153098).
- CVE-2018-14880: Fixed a buffer over-read in the OSPFv3 parser (bsc#1153098).
- CVE-2018-14881: Fixed a buffer over-read in the BGP parser (bsc#1153098).
- CVE-2018-14882: Fixed a buffer over-read in the ICMPv6 parser (bsc#1153098).
- CVE-2018-16227: Fixed a buffer over-read in the IEEE 802.11 parser in print-802_11.c for the Mesh Flags subfield (bsc#1153098).
- CVE-2018-16228: Fixed a buffer over-read in the HNCP parser (bsc#1153098).
- CVE-2018-16229: Fixed a buffer over-read in the DCCP parser (bsc#1153098).
- CVE-2018-16230: Fixed a buffer over-read in the BGP parser in print-bgp.c:bgp_attr_print (bsc#1153098).
- CVE-2018-16300: Fixed an unlimited recursion in the BGP parser that allowed denial-of-service by stack consumption (bsc#1153098).
- CVE-2018-16301: Fixed a buffer overflow (bsc#1153332 bsc#1153098).
- CVE-2018-16451: Fixed several buffer over-reads in print-smb.c:print_trans() for \MAILSLOT\BROWSE and \PIPE\LANMAN (bsc#1153098).
- CVE-2018-16452: Fixed a stack exhaustion in smbutil.c:smb_fdata (bsc#1153098).
- CVE-2019-15166: Fixed a bounds check in lmp_print_data_link_subobjs (bsc#1153098).
- CVE-2019-15167: Fixed a vulnerability in VRRP (bsc#1153098).
Список пакетов
Container suse/sle-micro/5.0/toolbox:latest
tcpdump-4.9.2-3.9.1
Container suse/sle-micro/5.1/toolbox:latest
tcpdump-4.9.2-3.9.1
Container suse/sle-micro/5.2/toolbox:latest
tcpdump-4.9.2-3.9.1
Image SLES15-Azure-BYOS
tcpdump-4.9.2-3.9.1
Image SLES15-EC2-CHOST-HVM-BYOS
tcpdump-4.9.2-3.9.1
Image SLES15-EC2-HVM-BYOS
tcpdump-4.9.2-3.9.1
Image SLES15-GCE-BYOS
tcpdump-4.9.2-3.9.1
Image SLES15-OCI-BYOS
tcpdump-4.9.2-3.9.1
Image SLES15-SAP-Azure
tcpdump-4.9.2-3.9.1
Image SLES15-SAP-Azure-BYOS
tcpdump-4.9.2-3.9.1
Image SLES15-SAP-Azure-LI-BYOS-Production
tcpdump-4.9.2-3.9.1
Image SLES15-SAP-Azure-VLI-BYOS-Production
tcpdump-4.9.2-3.9.1
Image SLES15-SAP-EC2-HVM
tcpdump-4.9.2-3.9.1
Image SLES15-SAP-EC2-HVM-BYOS
tcpdump-4.9.2-3.9.1
Image SLES15-SAP-GCE
tcpdump-4.9.2-3.9.1
Image SLES15-SAP-GCE-BYOS
tcpdump-4.9.2-3.9.1
Image SLES15-SAP-OCI-BYOS
tcpdump-4.9.2-3.9.1
Image SLES15-SP1-Azure-BYOS
tcpdump-4.9.2-3.9.1
Image SLES15-SP1-Azure-HPC-BYOS
tcpdump-4.9.2-3.9.1
Image SLES15-SP1-CAP-Deployment-BYOS-EC2-HVM
tcpdump-4.9.2-3.9.1
Image SLES15-SP1-CAP-Deployment-BYOS-GCE
tcpdump-4.9.2-3.9.1
Image SLES15-SP1-CHOST-BYOS-Azure
tcpdump-4.9.2-3.9.1
Image SLES15-SP1-CHOST-BYOS-EC2
tcpdump-4.9.2-3.9.1
Image SLES15-SP1-CHOST-BYOS-GCE
tcpdump-4.9.2-3.9.1
Image SLES15-SP1-EC2-HPC-HVM-BYOS
tcpdump-4.9.2-3.9.1
Image SLES15-SP1-EC2-HVM-BYOS
tcpdump-4.9.2-3.9.1
Image SLES15-SP1-GCE-BYOS
tcpdump-4.9.2-3.9.1
Image SLES15-SP1-Manager-4-0-Azure-BYOS-Proxy
tcpdump-4.9.2-3.9.1
Image SLES15-SP1-Manager-4-0-Azure-BYOS-Server
tcpdump-4.9.2-3.9.1
Image SLES15-SP1-Manager-4-0-EC2-HVM-BYOS-Proxy
tcpdump-4.9.2-3.9.1
Image SLES15-SP1-Manager-4-0-EC2-HVM-BYOS-Server
tcpdump-4.9.2-3.9.1
Image SLES15-SP1-Manager-4-0-GCE-BYOS-Proxy
tcpdump-4.9.2-3.9.1
Image SLES15-SP1-Manager-4-0-GCE-BYOS-Server
tcpdump-4.9.2-3.9.1
Image SLES15-SP1-OCI-BYOS
tcpdump-4.9.2-3.9.1
Image SLES15-SP1-SAP-Azure
tcpdump-4.9.2-3.9.1
Image SLES15-SP1-SAP-Azure-BYOS
tcpdump-4.9.2-3.9.1
Image SLES15-SP1-SAP-Azure-LI-BYOS-Production
tcpdump-4.9.2-3.9.1
Image SLES15-SP1-SAP-Azure-VLI-BYOS-Production
tcpdump-4.9.2-3.9.1
Image SLES15-SP1-SAP-EC2-HVM
tcpdump-4.9.2-3.9.1
Image SLES15-SP1-SAP-EC2-HVM-BYOS
tcpdump-4.9.2-3.9.1
Image SLES15-SP1-SAP-GCE
tcpdump-4.9.2-3.9.1
Image SLES15-SP1-SAP-GCE-BYOS
tcpdump-4.9.2-3.9.1
Image SLES15-SP1-SAP-OCI-BYOS
tcpdump-4.9.2-3.9.1
Image SLES15-SP1-SAPCAL-Azure
tcpdump-4.9.2-3.9.1
Image SLES15-SP1-SAPCAL-EC2-HVM
tcpdump-4.9.2-3.9.1
Image SLES15-SP1-SAPCAL-GCE
tcpdump-4.9.2-3.9.1
Image SLES15-SP2-Azure-Basic
tcpdump-4.9.2-3.9.1
Image SLES15-SP2-Azure-Standard
tcpdump-4.9.2-3.9.1
Image SLES15-SP2-BYOS-Azure
tcpdump-4.9.2-3.9.1
Image SLES15-SP2-BYOS-EC2-HVM
tcpdump-4.9.2-3.9.1
Image SLES15-SP2-BYOS-GCE
tcpdump-4.9.2-3.9.1
Image SLES15-SP2-CAP-Deployment-BYOS-Azure
tcpdump-4.9.2-3.9.1
Image SLES15-SP2-CHOST-BYOS-Aliyun
tcpdump-4.9.2-3.9.1
Image SLES15-SP2-CHOST-BYOS-Azure
tcpdump-4.9.2-3.9.1
Image SLES15-SP2-CHOST-BYOS-EC2
tcpdump-4.9.2-3.9.1
Image SLES15-SP2-CHOST-BYOS-GCE
tcpdump-4.9.2-3.9.1
Image SLES15-SP2-EC2-ECS-HVM
tcpdump-4.9.2-3.9.1
Image SLES15-SP2-EC2-HVM
tcpdump-4.9.2-3.9.1
Image SLES15-SP2-GCE
tcpdump-4.9.2-3.9.1
Image SLES15-SP2-HPC-Azure
tcpdump-4.9.2-3.9.1
Image SLES15-SP2-HPC-BYOS-Azure
tcpdump-4.9.2-3.9.1
Image SLES15-SP2-HPC-BYOS-EC2-HVM
tcpdump-4.9.2-3.9.1
Image SLES15-SP2-Manager-4-1-Proxy-BYOS-Azure
tcpdump-4.9.2-3.9.1
Image SLES15-SP2-Manager-4-1-Proxy-BYOS-EC2-HVM
tcpdump-4.9.2-3.9.1
Image SLES15-SP2-Manager-4-1-Proxy-BYOS-GCE
tcpdump-4.9.2-3.9.1
Image SLES15-SP2-Manager-4-1-Server-BYOS-Azure
tcpdump-4.9.2-3.9.1
Image SLES15-SP2-Manager-4-1-Server-BYOS-EC2-HVM
tcpdump-4.9.2-3.9.1
Image SLES15-SP2-Manager-4-1-Server-BYOS-GCE
tcpdump-4.9.2-3.9.1
Image SLES15-SP2-SAP-Azure
tcpdump-4.9.2-3.9.1
Image SLES15-SP2-SAP-Azure-LI-BYOS-Production
tcpdump-4.9.2-3.9.1
Image SLES15-SP2-SAP-Azure-VLI-BYOS-Production
tcpdump-4.9.2-3.9.1
Image SLES15-SP2-SAP-BYOS-Azure
tcpdump-4.9.2-3.9.1
Image SLES15-SP2-SAP-BYOS-EC2-HVM
tcpdump-4.9.2-3.9.1
Image SLES15-SP2-SAP-BYOS-GCE
tcpdump-4.9.2-3.9.1
Image SLES15-SP2-SAP-EC2-HVM
tcpdump-4.9.2-3.9.1
Image SLES15-SP2-SAP-GCE
tcpdump-4.9.2-3.9.1
Image SLES15-SP3-BYOS-Azure
tcpdump-4.9.2-3.9.1
Image SLES15-SP3-BYOS-EC2-HVM
tcpdump-4.9.2-3.9.1
Image SLES15-SP3-BYOS-GCE
tcpdump-4.9.2-3.9.1
Image SLES15-SP3-CHOST-BYOS-Aliyun
tcpdump-4.9.2-3.9.1
Image SLES15-SP3-CHOST-BYOS-Azure
tcpdump-4.9.2-3.9.1
Image SLES15-SP3-CHOST-BYOS-EC2
tcpdump-4.9.2-3.9.1
Image SLES15-SP3-CHOST-BYOS-GCE
tcpdump-4.9.2-3.9.1
Image SLES15-SP3-CHOST-BYOS-SAP-CCloud
tcpdump-4.9.2-3.9.1
Image SLES15-SP3-EC2-ECS-HVM
tcpdump-4.9.2-3.9.1
Image SLES15-SP3-EC2-HVM
tcpdump-4.9.2-3.9.1
Image SLES15-SP3-GCE
tcpdump-4.9.2-3.9.1
Image SLES15-SP3-HPC-Azure
tcpdump-4.9.2-3.9.1
Image SLES15-SP3-HPC-BYOS-Azure
tcpdump-4.9.2-3.9.1
Image SLES15-SP3-HPC-BYOS-EC2-HVM
tcpdump-4.9.2-3.9.1
Image SLES15-SP3-HPC-BYOS-GCE
tcpdump-4.9.2-3.9.1
Image SLES15-SP3-Manager-4-2-Proxy-BYOS-Azure
tcpdump-4.9.2-3.9.1
Image SLES15-SP3-Manager-4-2-Proxy-BYOS-EC2-HVM
tcpdump-4.9.2-3.9.1
Image SLES15-SP3-Manager-4-2-Proxy-BYOS-GCE
tcpdump-4.9.2-3.9.1
Image SLES15-SP3-Manager-4-2-Server-BYOS-Azure
tcpdump-4.9.2-3.9.1
Image SLES15-SP3-Manager-4-2-Server-BYOS-EC2-HVM
tcpdump-4.9.2-3.9.1
Image SLES15-SP3-Manager-4-2-Server-BYOS-GCE
tcpdump-4.9.2-3.9.1
Image SLES15-SP3-SAP-Azure
tcpdump-4.9.2-3.9.1
Image SLES15-SP3-SAP-Azure-LI-BYOS-Production
tcpdump-4.9.2-3.9.1
Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production
tcpdump-4.9.2-3.9.1
Image SLES15-SP3-SAP-BYOS-Azure
tcpdump-4.9.2-3.9.1
Image SLES15-SP3-SAP-BYOS-EC2-HVM
tcpdump-4.9.2-3.9.1
Image SLES15-SP3-SAP-BYOS-GCE
tcpdump-4.9.2-3.9.1
Image SLES15-SP3-SAP-EC2-HVM
tcpdump-4.9.2-3.9.1
Image SLES15-SP3-SAP-GCE
tcpdump-4.9.2-3.9.1
Image SLES15-SP3-SAPCAL-Azure
tcpdump-4.9.2-3.9.1
Image SLES15-SP3-SAPCAL-EC2-HVM
tcpdump-4.9.2-3.9.1
Image SLES15-SP3-SAPCAL-GCE
tcpdump-4.9.2-3.9.1
SUSE Linux Enterprise Module for Basesystem 15
tcpdump-4.9.2-3.9.1
SUSE Linux Enterprise Module for Basesystem 15 SP1
tcpdump-4.9.2-3.9.1
Ссылки
- Link for SUSE-SU-2019:2674-1
- E-Mail link for SUSE-SU-2019:2674-1
- SUSE Security Ratings
- SUSE Bug 1068716
- SUSE Bug 1153098
- SUSE Bug 1153332
- SUSE CVE CVE-2017-16808 page
- SUSE CVE CVE-2018-10103 page
- SUSE CVE CVE-2018-10105 page
- SUSE CVE CVE-2018-14461 page
- SUSE CVE CVE-2018-14462 page
- SUSE CVE CVE-2018-14463 page
- SUSE CVE CVE-2018-14464 page
- SUSE CVE CVE-2018-14465 page
- SUSE CVE CVE-2018-14466 page
- SUSE CVE CVE-2018-14467 page
- SUSE CVE CVE-2018-14468 page
- SUSE CVE CVE-2018-14469 page
- SUSE CVE CVE-2018-14470 page
- SUSE CVE CVE-2018-14879 page
Описание
tcpdump before 4.9.3 has a heap-based buffer over-read related to aoe_print in print-aoe.c and lookup_emem in addrtoname.c.
Затронутые продукты
Container suse/sle-micro/5.0/toolbox:latest:tcpdump-4.9.2-3.9.1
Container suse/sle-micro/5.1/toolbox:latest:tcpdump-4.9.2-3.9.1
Container suse/sle-micro/5.2/toolbox:latest:tcpdump-4.9.2-3.9.1
Image SLES15-Azure-BYOS:tcpdump-4.9.2-3.9.1
Ссылки
- CVE-2017-16808
- SUSE Bug 1068716
- SUSE Bug 1153098
Описание
tcpdump before 4.9.3 mishandles the printing of SMB data (issue 1 of 2).
Затронутые продукты
Container suse/sle-micro/5.0/toolbox:latest:tcpdump-4.9.2-3.9.1
Container suse/sle-micro/5.1/toolbox:latest:tcpdump-4.9.2-3.9.1
Container suse/sle-micro/5.2/toolbox:latest:tcpdump-4.9.2-3.9.1
Image SLES15-Azure-BYOS:tcpdump-4.9.2-3.9.1
Ссылки
- CVE-2018-10103
- SUSE Bug 1153098
Описание
tcpdump before 4.9.3 mishandles the printing of SMB data (issue 2 of 2).
Затронутые продукты
Container suse/sle-micro/5.0/toolbox:latest:tcpdump-4.9.2-3.9.1
Container suse/sle-micro/5.1/toolbox:latest:tcpdump-4.9.2-3.9.1
Container suse/sle-micro/5.2/toolbox:latest:tcpdump-4.9.2-3.9.1
Image SLES15-Azure-BYOS:tcpdump-4.9.2-3.9.1
Ссылки
- CVE-2018-10105
- SUSE Bug 1153098
Описание
The LDP parser in tcpdump before 4.9.3 has a buffer over-read in print-ldp.c:ldp_tlv_print().
Затронутые продукты
Container suse/sle-micro/5.0/toolbox:latest:tcpdump-4.9.2-3.9.1
Container suse/sle-micro/5.1/toolbox:latest:tcpdump-4.9.2-3.9.1
Container suse/sle-micro/5.2/toolbox:latest:tcpdump-4.9.2-3.9.1
Image SLES15-Azure-BYOS:tcpdump-4.9.2-3.9.1
Ссылки
- CVE-2018-14461
- SUSE Bug 1153098
Описание
The ICMP parser in tcpdump before 4.9.3 has a buffer over-read in print-icmp.c:icmp_print().
Затронутые продукты
Container suse/sle-micro/5.0/toolbox:latest:tcpdump-4.9.2-3.9.1
Container suse/sle-micro/5.1/toolbox:latest:tcpdump-4.9.2-3.9.1
Container suse/sle-micro/5.2/toolbox:latest:tcpdump-4.9.2-3.9.1
Image SLES15-Azure-BYOS:tcpdump-4.9.2-3.9.1
Ссылки
- CVE-2018-14462
- SUSE Bug 1153098
Описание
The VRRP parser in tcpdump before 4.9.3 has a buffer over-read in print-vrrp.c:vrrp_print() for VRRP version 2, a different vulnerability than CVE-2019-15167.
Затронутые продукты
Container suse/sle-micro/5.0/toolbox:latest:tcpdump-4.9.2-3.9.1
Container suse/sle-micro/5.1/toolbox:latest:tcpdump-4.9.2-3.9.1
Container suse/sle-micro/5.2/toolbox:latest:tcpdump-4.9.2-3.9.1
Image SLES15-Azure-BYOS:tcpdump-4.9.2-3.9.1
Ссылки
- CVE-2018-14463
- SUSE Bug 1153098
Описание
The LMP parser in tcpdump before 4.9.3 has a buffer over-read in print-lmp.c:lmp_print_data_link_subobjs().
Затронутые продукты
Container suse/sle-micro/5.0/toolbox:latest:tcpdump-4.9.2-3.9.1
Container suse/sle-micro/5.1/toolbox:latest:tcpdump-4.9.2-3.9.1
Container suse/sle-micro/5.2/toolbox:latest:tcpdump-4.9.2-3.9.1
Image SLES15-Azure-BYOS:tcpdump-4.9.2-3.9.1
Ссылки
- CVE-2018-14464
- SUSE Bug 1153098
Описание
The RSVP parser in tcpdump before 4.9.3 has a buffer over-read in print-rsvp.c:rsvp_obj_print().
Затронутые продукты
Container suse/sle-micro/5.0/toolbox:latest:tcpdump-4.9.2-3.9.1
Container suse/sle-micro/5.1/toolbox:latest:tcpdump-4.9.2-3.9.1
Container suse/sle-micro/5.2/toolbox:latest:tcpdump-4.9.2-3.9.1
Image SLES15-Azure-BYOS:tcpdump-4.9.2-3.9.1
Ссылки
- CVE-2018-14465
- SUSE Bug 1153098
Описание
The Rx parser in tcpdump before 4.9.3 has a buffer over-read in print-rx.c:rx_cache_find() and rx_cache_insert().
Затронутые продукты
Container suse/sle-micro/5.0/toolbox:latest:tcpdump-4.9.2-3.9.1
Container suse/sle-micro/5.1/toolbox:latest:tcpdump-4.9.2-3.9.1
Container suse/sle-micro/5.2/toolbox:latest:tcpdump-4.9.2-3.9.1
Image SLES15-Azure-BYOS:tcpdump-4.9.2-3.9.1
Ссылки
- CVE-2018-14466
- SUSE Bug 1153098
- SUSE Bug 1166972
Описание
The BGP parser in tcpdump before 4.9.3 has a buffer over-read in print-bgp.c:bgp_capabilities_print() (BGP_CAPCODE_MP).
Затронутые продукты
Container suse/sle-micro/5.0/toolbox:latest:tcpdump-4.9.2-3.9.1
Container suse/sle-micro/5.1/toolbox:latest:tcpdump-4.9.2-3.9.1
Container suse/sle-micro/5.2/toolbox:latest:tcpdump-4.9.2-3.9.1
Image SLES15-Azure-BYOS:tcpdump-4.9.2-3.9.1
Ссылки
- CVE-2018-14467
- SUSE Bug 1153098
Описание
The FRF.16 parser in tcpdump before 4.9.3 has a buffer over-read in print-fr.c:mfr_print().
Затронутые продукты
Container suse/sle-micro/5.0/toolbox:latest:tcpdump-4.9.2-3.9.1
Container suse/sle-micro/5.1/toolbox:latest:tcpdump-4.9.2-3.9.1
Container suse/sle-micro/5.2/toolbox:latest:tcpdump-4.9.2-3.9.1
Image SLES15-Azure-BYOS:tcpdump-4.9.2-3.9.1
Ссылки
- CVE-2018-14468
- SUSE Bug 1153098
Описание
The IKEv1 parser in tcpdump before 4.9.3 has a buffer over-read in print-isakmp.c:ikev1_n_print().
Затронутые продукты
Container suse/sle-micro/5.0/toolbox:latest:tcpdump-4.9.2-3.9.1
Container suse/sle-micro/5.1/toolbox:latest:tcpdump-4.9.2-3.9.1
Container suse/sle-micro/5.2/toolbox:latest:tcpdump-4.9.2-3.9.1
Image SLES15-Azure-BYOS:tcpdump-4.9.2-3.9.1
Ссылки
- CVE-2018-14469
- SUSE Bug 1153098
Описание
The Babel parser in tcpdump before 4.9.3 has a buffer over-read in print-babel.c:babel_print_v2().
Затронутые продукты
Container suse/sle-micro/5.0/toolbox:latest:tcpdump-4.9.2-3.9.1
Container suse/sle-micro/5.1/toolbox:latest:tcpdump-4.9.2-3.9.1
Container suse/sle-micro/5.2/toolbox:latest:tcpdump-4.9.2-3.9.1
Image SLES15-Azure-BYOS:tcpdump-4.9.2-3.9.1
Ссылки
- CVE-2018-14470
- SUSE Bug 1153098
Описание
The command-line argument parser in tcpdump before 4.9.3 has a buffer overflow in tcpdump.c:get_next_file().
Затронутые продукты
Container suse/sle-micro/5.0/toolbox:latest:tcpdump-4.9.2-3.9.1
Container suse/sle-micro/5.1/toolbox:latest:tcpdump-4.9.2-3.9.1
Container suse/sle-micro/5.2/toolbox:latest:tcpdump-4.9.2-3.9.1
Image SLES15-Azure-BYOS:tcpdump-4.9.2-3.9.1
Ссылки
- CVE-2018-14879
- SUSE Bug 1153098
Описание
The OSPFv3 parser in tcpdump before 4.9.3 has a buffer over-read in print-ospf6.c:ospf6_print_lshdr().
Затронутые продукты
Container suse/sle-micro/5.0/toolbox:latest:tcpdump-4.9.2-3.9.1
Container suse/sle-micro/5.1/toolbox:latest:tcpdump-4.9.2-3.9.1
Container suse/sle-micro/5.2/toolbox:latest:tcpdump-4.9.2-3.9.1
Image SLES15-Azure-BYOS:tcpdump-4.9.2-3.9.1
Ссылки
- CVE-2018-14880
- SUSE Bug 1153098
Описание
The BGP parser in tcpdump before 4.9.3 has a buffer over-read in print-bgp.c:bgp_capabilities_print() (BGP_CAPCODE_RESTART).
Затронутые продукты
Container suse/sle-micro/5.0/toolbox:latest:tcpdump-4.9.2-3.9.1
Container suse/sle-micro/5.1/toolbox:latest:tcpdump-4.9.2-3.9.1
Container suse/sle-micro/5.2/toolbox:latest:tcpdump-4.9.2-3.9.1
Image SLES15-Azure-BYOS:tcpdump-4.9.2-3.9.1
Ссылки
- CVE-2018-14881
- SUSE Bug 1153098
Описание
The ICMPv6 parser in tcpdump before 4.9.3 has a buffer over-read in print-icmp6.c.
Затронутые продукты
Container suse/sle-micro/5.0/toolbox:latest:tcpdump-4.9.2-3.9.1
Container suse/sle-micro/5.1/toolbox:latest:tcpdump-4.9.2-3.9.1
Container suse/sle-micro/5.2/toolbox:latest:tcpdump-4.9.2-3.9.1
Image SLES15-Azure-BYOS:tcpdump-4.9.2-3.9.1
Ссылки
- CVE-2018-14882
- SUSE Bug 1153098
Описание
The IEEE 802.11 parser in tcpdump before 4.9.3 has a buffer over-read in print-802_11.c for the Mesh Flags subfield.
Затронутые продукты
Container suse/sle-micro/5.0/toolbox:latest:tcpdump-4.9.2-3.9.1
Container suse/sle-micro/5.1/toolbox:latest:tcpdump-4.9.2-3.9.1
Container suse/sle-micro/5.2/toolbox:latest:tcpdump-4.9.2-3.9.1
Image SLES15-Azure-BYOS:tcpdump-4.9.2-3.9.1
Ссылки
- CVE-2018-16227
- SUSE Bug 1153098
Описание
The HNCP parser in tcpdump before 4.9.3 has a buffer over-read in print-hncp.c:print_prefix().
Затронутые продукты
Container suse/sle-micro/5.0/toolbox:latest:tcpdump-4.9.2-3.9.1
Container suse/sle-micro/5.1/toolbox:latest:tcpdump-4.9.2-3.9.1
Container suse/sle-micro/5.2/toolbox:latest:tcpdump-4.9.2-3.9.1
Image SLES15-Azure-BYOS:tcpdump-4.9.2-3.9.1
Ссылки
- CVE-2018-16228
- SUSE Bug 1153098
Описание
The DCCP parser in tcpdump before 4.9.3 has a buffer over-read in print-dccp.c:dccp_print_option().
Затронутые продукты
Container suse/sle-micro/5.0/toolbox:latest:tcpdump-4.9.2-3.9.1
Container suse/sle-micro/5.1/toolbox:latest:tcpdump-4.9.2-3.9.1
Container suse/sle-micro/5.2/toolbox:latest:tcpdump-4.9.2-3.9.1
Image SLES15-Azure-BYOS:tcpdump-4.9.2-3.9.1
Ссылки
- CVE-2018-16229
- SUSE Bug 1153098
Описание
The BGP parser in tcpdump before 4.9.3 has a buffer over-read in print-bgp.c:bgp_attr_print() (MP_REACH_NLRI).
Затронутые продукты
Container suse/sle-micro/5.0/toolbox:latest:tcpdump-4.9.2-3.9.1
Container suse/sle-micro/5.1/toolbox:latest:tcpdump-4.9.2-3.9.1
Container suse/sle-micro/5.2/toolbox:latest:tcpdump-4.9.2-3.9.1
Image SLES15-Azure-BYOS:tcpdump-4.9.2-3.9.1
Ссылки
- CVE-2018-16230
- SUSE Bug 1153098
Описание
The BGP parser in tcpdump before 4.9.3 allows stack consumption in print-bgp.c:bgp_attr_print() because of unlimited recursion.
Затронутые продукты
Container suse/sle-micro/5.0/toolbox:latest:tcpdump-4.9.2-3.9.1
Container suse/sle-micro/5.1/toolbox:latest:tcpdump-4.9.2-3.9.1
Container suse/sle-micro/5.2/toolbox:latest:tcpdump-4.9.2-3.9.1
Image SLES15-Azure-BYOS:tcpdump-4.9.2-3.9.1
Ссылки
- CVE-2018-16300
- SUSE Bug 1153098
Описание
The command-line argument parser in tcpdump before 4.99.0 has a buffer overflow in tcpdump.c:read_infile(). To trigger this vulnerability the attacker needs to create a 4GB file on the local filesystem and to specify the file name as the value of the -F command-line argument of tcpdump.
Затронутые продукты
Container suse/sle-micro/5.0/toolbox:latest:tcpdump-4.9.2-3.9.1
Container suse/sle-micro/5.1/toolbox:latest:tcpdump-4.9.2-3.9.1
Container suse/sle-micro/5.2/toolbox:latest:tcpdump-4.9.2-3.9.1
Image SLES15-Azure-BYOS:tcpdump-4.9.2-3.9.1
Ссылки
- CVE-2018-16301
- SUSE Bug 1153098
- SUSE Bug 1153332
- SUSE Bug 1195825
Описание
The SMB parser in tcpdump before 4.9.3 has buffer over-reads in print-smb.c:print_trans() for \MAILSLOT\BROWSE and \PIPE\LANMAN.
Затронутые продукты
Container suse/sle-micro/5.0/toolbox:latest:tcpdump-4.9.2-3.9.1
Container suse/sle-micro/5.1/toolbox:latest:tcpdump-4.9.2-3.9.1
Container suse/sle-micro/5.2/toolbox:latest:tcpdump-4.9.2-3.9.1
Image SLES15-Azure-BYOS:tcpdump-4.9.2-3.9.1
Ссылки
- CVE-2018-16451
- SUSE Bug 1153098
Описание
The SMB parser in tcpdump before 4.9.3 has stack exhaustion in smbutil.c:smb_fdata() via recursion.
Затронутые продукты
Container suse/sle-micro/5.0/toolbox:latest:tcpdump-4.9.2-3.9.1
Container suse/sle-micro/5.1/toolbox:latest:tcpdump-4.9.2-3.9.1
Container suse/sle-micro/5.2/toolbox:latest:tcpdump-4.9.2-3.9.1
Image SLES15-Azure-BYOS:tcpdump-4.9.2-3.9.1
Ссылки
- CVE-2018-16452
- SUSE Bug 1153098
Описание
tcpdump.org tcpdump 4.9.2 is affected by: CWE-126: Buffer Over-read. The impact is: May expose Saved Frame Pointer, Return Address etc. on stack. The component is: line 234: "ND_PRINT((ndo, "%s", buf));", in function named "print_prefix", in "print-hncp.c". The attack vector is: The victim must open a specially crafted pcap file.
Затронутые продукты
Container suse/sle-micro/5.0/toolbox:latest:tcpdump-4.9.2-3.9.1
Container suse/sle-micro/5.1/toolbox:latest:tcpdump-4.9.2-3.9.1
Container suse/sle-micro/5.2/toolbox:latest:tcpdump-4.9.2-3.9.1
Image SLES15-Azure-BYOS:tcpdump-4.9.2-3.9.1
Ссылки
- CVE-2019-1010220
- SUSE Bug 1142439
- SUSE Bug 1153098
Описание
lmp_print_data_link_subobjs() in print-lmp.c in tcpdump before 4.9.3 lacks certain bounds checks.
Затронутые продукты
Container suse/sle-micro/5.0/toolbox:latest:tcpdump-4.9.2-3.9.1
Container suse/sle-micro/5.1/toolbox:latest:tcpdump-4.9.2-3.9.1
Container suse/sle-micro/5.2/toolbox:latest:tcpdump-4.9.2-3.9.1
Image SLES15-Azure-BYOS:tcpdump-4.9.2-3.9.1
Ссылки
- CVE-2019-15166
- SUSE Bug 1153098
Описание
The VRRP parser in tcpdump before 4.9.3 has a buffer over-read in print-vrrp.c:vrrp_print() for VRRP version 3, a different vulnerability than CVE-2018-14463.
Затронутые продукты
Container suse/sle-micro/5.0/toolbox:latest:tcpdump-4.9.2-3.9.1
Container suse/sle-micro/5.1/toolbox:latest:tcpdump-4.9.2-3.9.1
Container suse/sle-micro/5.2/toolbox:latest:tcpdump-4.9.2-3.9.1
Image SLES15-Azure-BYOS:tcpdump-4.9.2-3.9.1
Ссылки
- CVE-2019-15167
- SUSE Bug 1153098