Unrated severityNVD Advisory· Published Mar 24, 2015· Updated May 6, 2026

CVE-2015-2153

Description

The rpki_rtr_pdu_print function in print-rpki-rtr.c in the TCP printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (out-of-bounds read or write and crash) via a crafted header length in an RPKI-RTR Protocol Data Unit (PDU).

Affected products

Tcpdump/Tcpdump
cpe:2.3:a:tcpdump:tcpdump:*:*:*:*:*:*:*:*
Range: <=4.7.0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

advisories.mageia.org/MGASA-2015-0114.htmlnvd
lists.fedoraproject.org/pipermail/package-announce/2015-March/153834.htmlnvd
lists.fedoraproject.org/pipermail/package-announce/2015-March/153999.htmlnvd
lists.opensuse.org/opensuse-updates/2015-03/msg00084.htmlnvd
packetstormsecurity.com/files/130730/tcpdump-Denial-Of-Service-Code-Execution.htmlnvd
www.debian.org/security/2015/dsa-3193nvd
www.mandriva.com/security/advisoriesnvd
www.mandriva.com/security/advisoriesnvd
www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.htmlnvd
www.securityfocus.com/archive/1/534829/100/0/threadednvd
www.securityfocus.com/bid/73018nvd
www.securitytracker.com/id/1031937nvd
www.ubuntu.com/usn/USN-2580-1nvd
access.redhat.com/errata/RHSA-2017:1871nvd
bugzilla.redhat.com/show_bug.cginvd
security.gentoo.org/glsa/201510-04nvd
www.exploit-db.com/exploits/37663/nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.009
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000