rpm package
suse/libpcap&distro=SUSE Linux Enterprise Software Development Kit 12 SP1
pkg:rpm/suse/libpcap&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP1
Vulnerabilities (49)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2016-7923 | Cri | 9.8 | < 1.8.1-9.1 | 1.8.1-9.1 | Jan 28, 2017 | The ARP parser in tcpdump before 4.9.0 has a buffer overflow in print-arp.c:arp_print(). | |
| CVE-2016-7922 | Cri | 9.8 | < 1.8.1-9.1 | 1.8.1-9.1 | Jan 28, 2017 | The AH parser in tcpdump before 4.9.0 has a buffer overflow in print-ah.c:ah_print(). | |
| CVE-2015-2155 | — | < 1.8.1-9.1 | 1.8.1-9.1 | Mar 24, 2015 | The force printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unspecified vectors. | ||
| CVE-2015-2154 | — | < 1.8.1-9.1 | 1.8.1-9.1 | Mar 24, 2015 | The osi_print_cksum function in print-isoclns.c in the ethernet printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a crafted (1) length, (2) offset, or (3) base pointer checksum value. | ||
| CVE-2015-2153 | — | < 1.8.1-9.1 | 1.8.1-9.1 | Mar 24, 2015 | The rpki_rtr_pdu_print function in print-rpki-rtr.c in the TCP printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (out-of-bounds read or write and crash) via a crafted header length in an RPKI-RTR Protocol Data Unit (PDU). | ||
| CVE-2015-0261 | — | < 1.8.1-9.1 | 1.8.1-9.1 | Mar 24, 2015 | Integer signedness error in the mobility_opt_print function in the IPv6 mobility printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (out-of-bounds read and crash) or possibly execute arbitrary code via a negative length value. | ||
| CVE-2014-8769 | — | < 1.8.1-9.1 | 1.8.1-9.1 | Nov 20, 2014 | tcpdump 3.8 through 4.6.2 might allow remote attackers to obtain sensitive information from memory or cause a denial of service (packet loss or segmentation fault) via a crafted Ad hoc On-Demand Distance Vector (AODV) packet, which triggers an out-of-bounds memory access. | ||
| CVE-2014-8768 | — | < 1.8.1-9.1 | 1.8.1-9.1 | Nov 20, 2014 | Multiple Integer underflows in the geonet_print function in tcpdump 4.5.0 through 4.6.2, when in verbose mode, allow remote attackers to cause a denial of service (segmentation fault and crash) via a crafted length value in a Geonet frame. | ||
| CVE-2014-8767 | — | < 1.8.1-9.1 | 1.8.1-9.1 | Nov 20, 2014 | Integer underflow in the olsr_print function in tcpdump 3.9.6 through 4.6.2, when in verbose mode, allows remote attackers to cause a denial of service (crash) via a crafted length value in an OLSR frame. |
- affected < 1.8.1-9.1fixed 1.8.1-9.1
The ARP parser in tcpdump before 4.9.0 has a buffer overflow in print-arp.c:arp_print().
- affected < 1.8.1-9.1fixed 1.8.1-9.1
The AH parser in tcpdump before 4.9.0 has a buffer overflow in print-ah.c:ah_print().
- CVE-2015-2155Mar 24, 2015affected < 1.8.1-9.1fixed 1.8.1-9.1
The force printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unspecified vectors.
- CVE-2015-2154Mar 24, 2015affected < 1.8.1-9.1fixed 1.8.1-9.1
The osi_print_cksum function in print-isoclns.c in the ethernet printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a crafted (1) length, (2) offset, or (3) base pointer checksum value.
- CVE-2015-2153Mar 24, 2015affected < 1.8.1-9.1fixed 1.8.1-9.1
The rpki_rtr_pdu_print function in print-rpki-rtr.c in the TCP printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (out-of-bounds read or write and crash) via a crafted header length in an RPKI-RTR Protocol Data Unit (PDU).
- CVE-2015-0261Mar 24, 2015affected < 1.8.1-9.1fixed 1.8.1-9.1
Integer signedness error in the mobility_opt_print function in the IPv6 mobility printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (out-of-bounds read and crash) or possibly execute arbitrary code via a negative length value.
- CVE-2014-8769Nov 20, 2014affected < 1.8.1-9.1fixed 1.8.1-9.1
tcpdump 3.8 through 4.6.2 might allow remote attackers to obtain sensitive information from memory or cause a denial of service (packet loss or segmentation fault) via a crafted Ad hoc On-Demand Distance Vector (AODV) packet, which triggers an out-of-bounds memory access.
- CVE-2014-8768Nov 20, 2014affected < 1.8.1-9.1fixed 1.8.1-9.1
Multiple Integer underflows in the geonet_print function in tcpdump 4.5.0 through 4.6.2, when in verbose mode, allow remote attackers to cause a denial of service (segmentation fault and crash) via a crafted length value in a Geonet frame.
- CVE-2014-8767Nov 20, 2014affected < 1.8.1-9.1fixed 1.8.1-9.1
Integer underflow in the olsr_print function in tcpdump 3.9.6 through 4.6.2, when in verbose mode, allows remote attackers to cause a denial of service (crash) via a crafted length value in an OLSR frame.
Page 3 of 3