Unrated severityNVD Advisory· Published Oct 3, 2019· Updated Aug 5, 2024

CVE-2018-16301

Description

Buffer overflow in tcpdump's -F option allows denial of service or possible code execution via crafted 4GB input file.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Buffer overflow in tcpdump's -F option allows denial of service or possible code execution via crafted 4GB input file.

Vulnerability

A buffer overflow vulnerability exists in tcpdump before version 4.99.0 in the read_infile() function in tcpdump.c. The issue occurs when parsing command-line arguments via the -F option, which reads a file containing filter expressions. If an attacker provides a crafted file of approximately 4 GB or larger, the insufficient bounds checking leads to a buffer overflow. This affects all versions prior to 4.99.0 [1].

Exploitation

Exploitation requires the attacker to have local filesystem access to create a file of at least 4 GB. The attacker then invokes tcpdump with the -F option pointing to that crafted file. No special privileges or network access are needed beyond command-line execution. The vulnerability is triggered during the parsing of the file contents within read_infile().

Impact

Successful exploitation results in a buffer overflow, which could lead to a denial of service (crash) or potentially arbitrary code execution depending on the environment and memory layout. The impact is process-level and may allow an attacker to execute arbitrary commands with the privileges of the user running tcpdump.

Mitigation

The issue is fixed in tcpdump version 4.99.0, released on June 9, 2021 [1]. Users should upgrade to this version or later. No workaround is available other than avoiding the use of the -F option with untrusted input files.

References

Add CVE-2018-16301 to CHANGES. [skip ci] · the-tcpdump-group/tcpdump@ad7c25b

AI Insight generated on May 26, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

Tcpdump/Tcpdumpllm-fuzzy
Range: <4.99.0
osv-coords78 versions
pkg:rpm/opensuse/libpcap&distro=openSUSE%20Leap%2015.0 pkg:rpm/opensuse/libpcap&distro=openSUSE%20Leap%2015.1 pkg:rpm/opensuse/tcpdump&distro=openSUSE%20Leap%2015.0 pkg:rpm/opensuse/tcpdump&distro=openSUSE%20Leap%2015.1 pkg:rpm/opensuse/tcpdump&distro=openSUSE%20Leap%2015.3 pkg:rpm/opensuse/tcpdump&distro=openSUSE%20Tumbleweed pkg:rpm/suse/libpcap&distro=HPE%20Helion%20OpenStack%208 pkg:rpm/suse/libpcap&distro=SUSE%20Enterprise%20Storage%204 pkg:rpm/suse/libpcap&distro=SUSE%20Enterprise%20Storage%205 pkg:rpm/suse/libpcap&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP4 pkg:rpm/suse/libpcap&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015 pkg:rpm/suse/libpcap&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP1 pkg:rpm/suse/libpcap&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1-LTSS pkg:rpm/suse/libpcap&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP2-BCL pkg:rpm/suse/libpcap&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP2-LTSS pkg:rpm/suse/libpcap&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3-BCL pkg:rpm/suse/libpcap&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3-LTSS pkg:rpm/suse/libpcap&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP4 pkg:rpm/suse/libpcap&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5 pkg:rpm/suse/libpcap&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP1 pkg:rpm/suse/libpcap&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP2 pkg:rpm/suse/libpcap&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP3 pkg:rpm/suse/libpcap&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP4 pkg:rpm/suse/libpcap&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5 pkg:rpm/suse/libpcap&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP4 pkg:rpm/suse/libpcap&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP5 pkg:rpm/suse/libpcap&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012%20SP4 pkg:rpm/suse/libpcap&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012%20SP5 pkg:rpm/suse/libpcap&distro=SUSE%20OpenStack%20Cloud%207 pkg:rpm/suse/libpcap&distro=SUSE%20OpenStack%20Cloud%208 pkg:rpm/suse/libpcap&distro=SUSE%20OpenStack%20Cloud%20Crowbar%208 pkg:rpm/suse/tcpdump&distro=HPE%20Helion%20OpenStack%208 pkg:rpm/suse/tcpdump&distro=SUSE%20Enterprise%20Storage%204 pkg:rpm/suse/tcpdump&distro=SUSE%20Enterprise%20Storage%205 pkg:rpm/suse/tcpdump&distro=SUSE%20Enterprise%20Storage%206 pkg:rpm/suse/tcpdump&distro=SUSE%20Enterprise%20Storage%207 pkg:rpm/suse/tcpdump&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP4 pkg:rpm/suse/tcpdump&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-ESPOS pkg:rpm/suse/tcpdump&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-LTSS pkg:rpm/suse/tcpdump&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-ESPOS pkg:rpm/suse/tcpdump&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-LTSS pkg:rpm/suse/tcpdump&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-ESPOS pkg:rpm/suse/tcpdump&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-LTSS pkg:rpm/suse/tcpdump&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015 pkg:rpm/suse/tcpdump&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP1 pkg:rpm/suse/tcpdump&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP3 pkg:rpm/suse/tcpdump&distro=SUSE%20Linux%20Enterprise%20Point%20of%20Sale%2011%20SP3 pkg:rpm/suse/tcpdump&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2015%20SP2 pkg:rpm/suse/tcpdump&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4-LTSS pkg:rpm/suse/tcpdump&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1-LTSS pkg:rpm/suse/tcpdump&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP2-BCL pkg:rpm/suse/tcpdump&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP2-LTSS pkg:rpm/suse/tcpdump&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3-BCL pkg:rpm/suse/tcpdump&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3-LTSS pkg:rpm/suse/tcpdump&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP4 pkg:rpm/suse/tcpdump&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP4-LTSS pkg:rpm/suse/tcpdump&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5 pkg:rpm/suse/tcpdump&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP1-BCL pkg:rpm/suse/tcpdump&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP1-LTSS pkg:rpm/suse/tcpdump&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-BCL pkg:rpm/suse/tcpdump&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-LTSS pkg:rpm/suse/tcpdump&distro=SUSE%20Linux%20Enterprise%20Server%2015-LTSS pkg:rpm/suse/tcpdump&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP1 pkg:rpm/suse/tcpdump&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP2 pkg:rpm/suse/tcpdump&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP3 pkg:rpm/suse/tcpdump&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP4 pkg:rpm/suse/tcpdump&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5 pkg:rpm/suse/tcpdump&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015 pkg:rpm/suse/tcpdump&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP1 pkg:rpm/suse/tcpdump&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP2 pkg:rpm/suse/tcpdump&distro=SUSE%20Manager%20Proxy%204.1 pkg:rpm/suse/tcpdump&distro=SUSE%20Manager%20Retail%20Branch%20Server%204.1 pkg:rpm/suse/tcpdump&distro=SUSE%20Manager%20Server%204.1 pkg:rpm/suse/tcpdump&distro=SUSE%20OpenStack%20Cloud%207 pkg:rpm/suse/tcpdump&distro=SUSE%20OpenStack%20Cloud%208 pkg:rpm/suse/tcpdump&distro=SUSE%20OpenStack%20Cloud%209 pkg:rpm/suse/tcpdump&distro=SUSE%20OpenStack%20Cloud%20Crowbar%208 pkg:rpm/suse/tcpdump&distro=SUSE%20OpenStack%20Cloud%20Crowbar%209
< 1.8.1-lp150.3.3.1+ 77 more
- (no CPE)range: < 1.8.1-lp150.3.3.1
- (no CPE)range: < 1.8.1-lp151.4.3.1
- (no CPE)range: < 4.9.2-lp150.10.1
- (no CPE)range: < 4.9.2-lp151.4.6.1
- (no CPE)range: < 4.9.2-3.18.1
- (no CPE)range: < 4.99.1-1.2
- (no CPE)range: < 1.8.1-10.3.1
- (no CPE)range: < 1.8.1-10.3.1
- (no CPE)range: < 1.8.1-10.3.1
- (no CPE)range: < 1.8.1-10.3.1
- (no CPE)range: < 1.8.1-4.3.1
- (no CPE)range: < 1.8.1-4.3.1
- (no CPE)range: < 1.8.1-10.3.1
- (no CPE)range: < 1.8.1-10.3.1
- (no CPE)range: < 1.8.1-10.3.1
- (no CPE)range: < 1.8.1-10.3.1
- (no CPE)range: < 1.8.1-10.3.1
- (no CPE)range: < 1.8.1-10.3.1
- (no CPE)range: < 1.8.1-10.3.1
- (no CPE)range: < 1.8.1-10.3.1
- (no CPE)range: < 1.8.1-10.3.1
- (no CPE)range: < 1.8.1-10.3.1
- (no CPE)range: < 1.8.1-10.3.1
- (no CPE)range: < 1.8.1-10.3.1
- (no CPE)range: < 1.8.1-10.3.1
- (no CPE)range: < 1.8.1-10.3.1
- (no CPE)range: < 1.8.1-10.3.1
- (no CPE)range: < 1.8.1-10.3.1
- (no CPE)range: < 1.8.1-10.3.1
- (no CPE)range: < 1.8.1-10.3.1
- (no CPE)range: < 1.8.1-10.3.1
- (no CPE)range: < 4.9.2-14.14.1
- (no CPE)range: < 4.9.2-14.14.1
- (no CPE)range: < 4.9.2-14.14.1
- (no CPE)range: < 4.9.2-3.18.1
- (no CPE)range: < 4.9.2-3.18.1
- (no CPE)range: < 4.9.2-14.14.1
- (no CPE)range: < 4.9.2-3.18.1
- (no CPE)range: < 4.9.2-3.18.1
- (no CPE)range: < 4.9.2-3.18.1
- (no CPE)range: < 4.9.2-3.18.1
- (no CPE)range: < 4.9.2-3.18.1
- (no CPE)range: < 4.9.2-3.18.1
- (no CPE)range: < 4.9.2-3.9.1
- (no CPE)range: < 4.9.2-3.9.1
- (no CPE)range: < 4.9.2-3.18.1
- (no CPE)range: < 3.9.8-1.30.13.1
- (no CPE)range: < 4.9.2-3.18.1
- (no CPE)range: < 3.9.8-1.30.13.1
- (no CPE)range: < 4.9.2-14.14.1
- (no CPE)range: < 4.9.2-14.14.1
- (no CPE)range: < 4.9.2-14.14.1
- (no CPE)range: < 4.9.2-14.14.1
- (no CPE)range: < 4.9.2-14.14.1
- (no CPE)range: < 4.9.2-14.14.1
- (no CPE)range: < 4.9.2-14.20.1
- (no CPE)range: < 4.9.2-14.14.1
- (no CPE)range: < 4.9.2-3.18.1
- (no CPE)range: < 4.9.2-3.18.1
- (no CPE)range: < 4.9.2-3.18.1
- (no CPE)range: < 4.9.2-3.18.1
- (no CPE)range: < 4.9.2-3.18.1
- (no CPE)range: < 4.9.2-14.14.1
- (no CPE)range: < 4.9.2-14.14.1
- (no CPE)range: < 4.9.2-14.14.1
- (no CPE)range: < 4.9.2-14.14.1
- (no CPE)range: < 4.9.2-14.14.1
- (no CPE)range: < 4.9.2-3.18.1
- (no CPE)range: < 4.9.2-3.18.1
- (no CPE)range: < 4.9.2-3.18.1
- (no CPE)range: < 4.9.2-3.18.1
- (no CPE)range: < 4.9.2-3.18.1
- (no CPE)range: < 4.9.2-3.18.1
- (no CPE)range: < 4.9.2-14.14.1
- (no CPE)range: < 4.9.2-14.14.1
- (no CPE)range: < 4.9.2-14.20.1
- (no CPE)range: < 4.9.2-14.14.1
- (no CPE)range: < 4.9.2-14.20.1
The Tcpdump Group/tcpdumpv5
Range: unspecified

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

github.com/the-tcpdump-group/tcpdump/commit/ad7c25bc0decf96dc7768c9e903734d38528b1bdmitrex_refsource_CONFIRM

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000