Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

openSUSE-SU-2017:2875-1

Опубликовано: 27 окт. 2017
Источник: suse-cvrf

Описание

Security update for tcpdump

This update for tcpdump to version 4.9.2 fixes several issues.

These security issues were fixed:

  • CVE-2017-11108: Prevent remote attackers to cause DoS (heap-based buffer over-read and application crash) via crafted packet data. The crash occured in the EXTRACT_16BITS function, called from the stp_print function for the Spanning Tree Protocol (bsc#1047873, bsc#1057247).
  • CVE-2017-11543: Prevent buffer overflow in the sliplink_print function in print-sl.c that allowed remote DoS (bsc#1057247).
  • CVE-2017-13011: Prevent buffer overflow in bittok2str_internal() that allowed remote DoS (bsc#1057247)
  • CVE-2017-12989: Prevent infinite loop in the RESP parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-12990: Prevent infinite loop in the ISAKMP parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-12995: Prevent infinite loop in the DNS parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-12997: Prevent infinite loop in the LLDP parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-11541: Prevent heap-based buffer over-read in the lldp_print function in print-lldp.c, related to util-print.c that allowed remote DoS (bsc#1057247).
  • CVE-2017-11542: Prevent heap-based buffer over-read in the pimv1_print function in print-pim.c that allowed remote DoS (bsc#1057247).
  • CVE-2017-12893: Prevent buffer over-read in the SMB/CIFS parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-12894: Prevent buffer over-read in several protocol parsers that allowed remote DoS (bsc#1057247)
  • CVE-2017-12895: Prevent buffer over-read in the ICMP parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-12896: Prevent buffer over-read in the ISAKMP parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-12897: Prevent buffer over-read in the ISO CLNS parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-12898: Prevent buffer over-read in the NFS parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-12899: Prevent buffer over-read in the DECnet parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-12900: Prevent buffer over-read in the in several protocol parsers that allowed remote DoS (bsc#1057247)
  • CVE-2017-12901: Prevent buffer over-read in the EIGRP parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-12902: Prevent buffer over-read in the Zephyr parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-12985: Prevent buffer over-read in the IPv6 parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-12986: Prevent buffer over-read in the IPv6 routing header parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-12987: Prevent buffer over-read in the 802.11 parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-12988: Prevent buffer over-read in the telnet parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-12991: Prevent buffer over-read in the BGP parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-12992: Prevent buffer over-read in the RIPng parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-12993: Prevent buffer over-read in the Juniper protocols parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-12994: Prevent buffer over-read in the BGP parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-12996: Prevent buffer over-read in the PIMv2 parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-12998: Prevent buffer over-read in the IS-IS parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-12999: Prevent buffer over-read in the IS-IS parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-13000: Prevent buffer over-read in the IEEE 802.15.4 parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-13001: Prevent buffer over-read in the NFS parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-13002: Prevent buffer over-read in the AODV parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-13003: Prevent buffer over-read in the LMP parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-13004: Prevent buffer over-read in the Juniper protocols parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-13005: Prevent buffer over-read in the NFS parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-13006: Prevent buffer over-read in the L2TP parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-13007: Prevent buffer over-read in the Apple PKTAP parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-13008: Prevent buffer over-read in the IEEE 802.11 parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-13009: Prevent buffer over-read in the IPv6 mobility parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-13010: Prevent buffer over-read in the BEEP parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-13012: Prevent buffer over-read in the ICMP parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-13013: Prevent buffer over-read in the ARP parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-13014: Prevent buffer over-read in the White Board protocol parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-13015: Prevent buffer over-read in the EAP parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-13016: Prevent buffer over-read in the ISO ES-IS parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-13017: Prevent buffer over-read in the DHCPv6 parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-13018: Prevent buffer over-read in the PGM parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-13019: Prevent buffer over-read in the PGM parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-13020: Prevent buffer over-read in the VTP parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-13021: Prevent buffer over-read in the ICMPv6 parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-13022: Prevent buffer over-read in the IP parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-13023: Prevent buffer over-read in the IPv6 mobility parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-13024: Prevent buffer over-read in the IPv6 mobility parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-13025: Prevent buffer over-read in the IPv6 mobility parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-13026: Prevent buffer over-read in the ISO IS-IS parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-13027: Prevent buffer over-read in the LLDP parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-13028: Prevent buffer over-read in the BOOTP parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-13029: Prevent buffer over-read in the PPP parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-13030: Prevent buffer over-read in the PIM parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-13031: Prevent buffer over-read in the IPv6 fragmentation header parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-13032: Prevent buffer over-read in the RADIUS parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-13033: Prevent buffer over-read in the VTP parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-13034: Prevent buffer over-read in the PGM parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-13035: Prevent buffer over-read in the ISO IS-IS parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-13036: Prevent buffer over-read in the OSPFv3 parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-13037: Prevent buffer over-read in the IP parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-13038: Prevent buffer over-read in the PPP parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-13039: Prevent buffer over-read in the ISAKMP parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-13040: Prevent buffer over-read in the MPTCP parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-13041: Prevent buffer over-read in the ICMPv6 parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-13042: Prevent buffer over-read in the HNCP parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-13043: Prevent buffer over-read in the BGP parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-13044: Prevent buffer over-read in the HNCP parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-13045: Prevent buffer over-read in the VQP parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-13046: Prevent buffer over-read in the BGP parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-13047: Prevent buffer over-read in the ISO ES-IS parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-13048: Prevent buffer over-read in the RSVP parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-13049: Prevent buffer over-read in the Rx protocol parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-13050: Prevent buffer over-read in the RPKI-Router parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-13051: Prevent buffer over-read in the RSVP parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-13052: Prevent buffer over-read in the CFM parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-13053: Prevent buffer over-read in the BGP parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-13054: Prevent buffer over-read in the LLDP parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-13055: Prevent buffer over-read in the ISO IS-IS parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-13687: Prevent buffer over-read in the Cisco HDLC parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-13688: Prevent buffer over-read in the OLSR parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-13689: Prevent buffer over-read in the IKEv1 parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-13690: Prevent buffer over-read in the IKEv2 parser that allowed remote DoS (bsc#1057247)
  • CVE-2017-13725: Prevent buffer over-read in the IPv6 routing header parser that allowed remote DoS (bsc#1057247)
  • Prevent segmentation fault in ESP decoder with OpenSSL 1.1 (bsc#1057247)

This update was imported from the SUSE:SLE-12:Update update project.

Список пакетов

openSUSE Leap 42.2
tcpdump-4.9.2-9.1
openSUSE Leap 42.3
tcpdump-4.9.2-9.1

Ссылки

Описание

tcpdump 4.9.0 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via crafted packet data. The crash occurs in the EXTRACT_16BITS function, called from the stp_print function for the Spanning Tree Protocol.

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

tcpdump 4.9.0 has a heap-based buffer over-read in the lldp_print function in print-lldp.c, related to util-print.c.

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

tcpdump 4.9.0 has a heap-based buffer over-read in the pimv1_print function in print-pim.c.

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

tcpdump 4.9.0 has a buffer overflow in the sliplink_print function in print-sl.c.

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The SMB/CIFS parser in tcpdump before 4.9.2 has a buffer over-read in smbutil.c:name_len().

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

Several protocol parsers in tcpdump before 4.9.2 could cause a buffer over-read in addrtoname.c:lookup_bytestring().

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The ICMP parser in tcpdump before 4.9.2 has a buffer over-read in print-icmp.c:icmp_print().

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The ISAKMP parser in tcpdump before 4.9.2 has a buffer over-read in print-isakmp.c:isakmp_rfc3948_print().

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The ISO CLNS parser in tcpdump before 4.9.2 has a buffer over-read in print-isoclns.c:isoclns_print().

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The NFS parser in tcpdump before 4.9.2 has a buffer over-read in print-nfs.c:interp_reply().

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The DECnet parser in tcpdump before 4.9.2 has a buffer over-read in print-decnet.c:decnet_print().

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

Several protocol parsers in tcpdump before 4.9.2 could cause a buffer over-read in util-print.c:tok2strbuf().

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The EIGRP parser in tcpdump before 4.9.2 has a buffer over-read in print-eigrp.c:eigrp_print().

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The Zephyr parser in tcpdump before 4.9.2 has a buffer over-read in print-zephyr.c, several functions.

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The IPv6 parser in tcpdump before 4.9.2 has a buffer over-read in print-ip6.c:ip6_print().

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The IPv6 routing header parser in tcpdump before 4.9.2 has a buffer over-read in print-rt6.c:rt6_print().

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The IEEE 802.11 parser in tcpdump before 4.9.2 has a buffer over-read in print-802_11.c:parse_elements().

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The telnet parser in tcpdump before 4.9.2 has a buffer over-read in print-telnet.c:telnet_parse().

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The RESP parser in tcpdump before 4.9.2 could enter an infinite loop due to a bug in print-resp.c:resp_get_length().

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The ISAKMP parser in tcpdump before 4.9.2 could enter an infinite loop due to bugs in print-isakmp.c, several functions.

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The BGP parser in tcpdump before 4.9.2 has a buffer over-read in print-bgp.c:bgp_attr_print().

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The RIPng parser in tcpdump before 4.9.2 has a buffer over-read in print-ripng.c:ripng_print().

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The Juniper protocols parser in tcpdump before 4.9.2 has a buffer over-read in print-juniper.c, several functions.

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The BGP parser in tcpdump before 4.9.2 has a buffer over-read in print-bgp.c:bgp_attr_print().

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The DNS parser in tcpdump before 4.9.2 could enter an infinite loop due to a bug in print-domain.c:ns_print().

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The PIMv2 parser in tcpdump before 4.9.2 has a buffer over-read in print-pim.c:pimv2_print().

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The LLDP parser in tcpdump before 4.9.2 could enter an infinite loop due to a bug in print-lldp.c:lldp_private_8021_print().

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The IS-IS parser in tcpdump before 4.9.2 has a buffer over-read in print-isoclns.c:isis_print_extd_ip_reach().

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The IS-IS parser in tcpdump before 4.9.2 has a buffer over-read in print-isoclns.c:isis_print().

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The IEEE 802.15.4 parser in tcpdump before 4.9.2 has a buffer over-read in print-802_15_4.c:ieee802_15_4_if_print().

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The NFS parser in tcpdump before 4.9.2 has a buffer over-read in print-nfs.c:nfs_printfh().

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The AODV parser in tcpdump before 4.9.2 has a buffer over-read in print-aodv.c:aodv_extension().

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The LMP parser in tcpdump before 4.9.2 has a buffer over-read in print-lmp.c:lmp_print().

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The Juniper protocols parser in tcpdump before 4.9.2 has a buffer over-read in print-juniper.c:juniper_parse_header().

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The NFS parser in tcpdump before 4.9.2 has a buffer over-read in print-nfs.c:xid_map_enter().

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The L2TP parser in tcpdump before 4.9.2 has a buffer over-read in print-l2tp.c, several functions.

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The Apple PKTAP parser in tcpdump before 4.9.2 has a buffer over-read in print-pktap.c:pktap_if_print().

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The IEEE 802.11 parser in tcpdump before 4.9.2 has a buffer over-read in print-802_11.c:parse_elements().

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The IPv6 mobility parser in tcpdump before 4.9.2 has a buffer over-read in print-mobility.c:mobility_print().

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The BEEP parser in tcpdump before 4.9.2 has a buffer over-read in print-beep.c:l_strnstart().

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

Several protocol parsers in tcpdump before 4.9.2 could cause a buffer overflow in util-print.c:bittok2str_internal().

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The ICMP parser in tcpdump before 4.9.2 has a buffer over-read in print-icmp.c:icmp_print().

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The ARP parser in tcpdump before 4.9.2 has a buffer over-read in print-arp.c, several functions.

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The White Board protocol parser in tcpdump before 4.9.2 has a buffer over-read in print-wb.c:wb_prep(), several functions.

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The EAP parser in tcpdump before 4.9.2 has a buffer over-read in print-eap.c:eap_print().

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The ISO ES-IS parser in tcpdump before 4.9.2 has a buffer over-read in print-isoclns.c:esis_print().

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The DHCPv6 parser in tcpdump before 4.9.2 has a buffer over-read in print-dhcp6.c:dhcp6opt_print().

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The PGM parser in tcpdump before 4.9.2 has a buffer over-read in print-pgm.c:pgm_print().

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The PGM parser in tcpdump before 4.9.2 has a buffer over-read in print-pgm.c:pgm_print().

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The VTP parser in tcpdump before 4.9.2 has a buffer over-read in print-vtp.c:vtp_print().

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The ICMPv6 parser in tcpdump before 4.9.2 has a buffer over-read in print-icmp6.c:icmp6_print().

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The IP parser in tcpdump before 4.9.2 has a buffer over-read in print-ip.c:ip_printroute().

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The IPv6 mobility parser in tcpdump before 4.9.2 has a buffer over-read in print-mobility.c:mobility_opt_print().

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The IPv6 mobility parser in tcpdump before 4.9.2 has a buffer over-read in print-mobility.c:mobility_opt_print().

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The IPv6 mobility parser in tcpdump before 4.9.2 has a buffer over-read in print-mobility.c:mobility_opt_print().

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The ISO IS-IS parser in tcpdump before 4.9.2 has a buffer over-read in print-isoclns.c, several functions.

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The LLDP parser in tcpdump before 4.9.2 has a buffer over-read in print-lldp.c:lldp_mgmt_addr_tlv_print().

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The BOOTP parser in tcpdump before 4.9.2 has a buffer over-read in print-bootp.c:bootp_print().

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The PPP parser in tcpdump before 4.9.2 has a buffer over-read in print-ppp.c:print_ccp_config_options().

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The PIM parser in tcpdump before 4.9.2 has a buffer over-read in print-pim.c, several functions.

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The IPv6 fragmentation header parser in tcpdump before 4.9.2 has a buffer over-read in print-frag6.c:frag6_print().

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The RADIUS parser in tcpdump before 4.9.2 has a buffer over-read in print-radius.c:print_attr_string().

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The VTP parser in tcpdump before 4.9.2 has a buffer over-read in print-vtp.c:vtp_print().

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The PGM parser in tcpdump before 4.9.2 has a buffer over-read in print-pgm.c:pgm_print().

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The ISO IS-IS parser in tcpdump before 4.9.2 has a buffer over-read in print-isoclns.c:isis_print_id().

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The OSPFv3 parser in tcpdump before 4.9.2 has a buffer over-read in print-ospf6.c:ospf6_decode_v3().

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The IP parser in tcpdump before 4.9.2 has a buffer over-read in print-ip.c:ip_printts().

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The PPP parser in tcpdump before 4.9.2 has a buffer over-read in print-ppp.c:handle_mlppp().

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The ISAKMP parser in tcpdump before 4.9.2 has a buffer over-read in print-isakmp.c, several functions.

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The MPTCP parser in tcpdump before 4.9.2 has a buffer over-read in print-mptcp.c, several functions.

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The ICMPv6 parser in tcpdump before 4.9.2 has a buffer over-read in print-icmp6.c:icmp6_nodeinfo_print().

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The HNCP parser in tcpdump before 4.9.2 has a buffer over-read in print-hncp.c:dhcpv6_print().

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The BGP parser in tcpdump before 4.9.2 has a buffer over-read in print-bgp.c:decode_multicast_vpn().

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The HNCP parser in tcpdump before 4.9.2 has a buffer over-read in print-hncp.c:dhcpv4_print().

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The VQP parser in tcpdump before 4.9.2 has a buffer over-read in print-vqp.c:vqp_print().

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The BGP parser in tcpdump before 4.9.2 has a buffer over-read in print-bgp.c:bgp_attr_print().

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The ISO ES-IS parser in tcpdump before 4.9.2 has a buffer over-read in print-isoclns.c:esis_print().

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The RSVP parser in tcpdump before 4.9.2 has a buffer over-read in print-rsvp.c:rsvp_obj_print().

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The Rx protocol parser in tcpdump before 4.9.2 has a buffer over-read in print-rx.c:ubik_print().

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The RPKI-Router parser in tcpdump before 4.9.2 has a buffer over-read in print-rpki-rtr.c:rpki_rtr_pdu_print().

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The RSVP parser in tcpdump before 4.9.2 has a buffer over-read in print-rsvp.c:rsvp_obj_print().

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The CFM parser in tcpdump before 4.9.2 has a buffer over-read in print-cfm.c:cfm_print().

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The BGP parser in tcpdump before 4.9.2 has a buffer over-read in print-bgp.c:decode_rt_routing_info().

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The LLDP parser in tcpdump before 4.9.2 has a buffer over-read in print-lldp.c:lldp_private_8023_print().

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The ISO IS-IS parser in tcpdump before 4.9.2 has a buffer over-read in print-isoclns.c:isis_print_is_reach_subtlv().

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The Cisco HDLC parser in tcpdump before 4.9.2 has a buffer over-read in print-chdlc.c:chdlc_print().

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The OLSR parser in tcpdump before 4.9.2 has a buffer over-read in print-olsr.c:olsr_print().

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The IKEv1 parser in tcpdump before 4.9.2 has a buffer over-read in print-isakmp.c:ikev1_id_print().

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The IKEv2 parser in tcpdump before 4.9.2 has a buffer over-read in print-isakmp.c, several functions.

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки

Описание

The IPv6 routing header parser in tcpdump before 4.9.2 has a buffer over-read in print-rt6.c:rt6_print().

Затронутые продукты
openSUSE Leap 42.2:tcpdump-4.9.2-9.1
openSUSE Leap 42.3:tcpdump-4.9.2-9.1
Ссылки
Уязвимость openSUSE-SU-2017:2875-1