Описание
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2018-14466. Reason: This candidate is a duplicate of CVE-2018-14466. Notes: All CVE users should reference CVE-2018-14466 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | not-affected | 4.9.3-0ubuntu0.18.04.1 |
| devel | not-affected | 4.9.3-4 |
| eoan | not-affected | 4.9.3-2 |
| esm-infra-legacy/trusty | not-affected | |
| esm-infra/bionic | not-affected | 4.9.3-0ubuntu0.18.04.1 |
| esm-infra/xenial | not-affected | 4.9.3-0ubuntu0.16.04.1 |
| precise/esm | ignored | end of life, was needed |
| trusty | ignored | end of standard support |
| trusty/esm | ignored | end of ESM support, was needed |
| upstream | not-affected |
Показывать по
Связанные уязвимости
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2018-14466. Reason: This candidate is a duplicate of CVE-2018-14466. Notes: All CVE users should reference CVE-2018-14466 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage
tcpdump 4.9.2 (and probably lower versions) is prone to a heap-based buffer over-read in the EXTRACT_32BITS function (extract.h, called from the rx_cache_find function, print-rx.c) due to improper serviceId sanitization.