rpm package

suse/tcpdump&distro=SUSE Linux Enterprise Server 11 SP4

pkg:rpm/suse/tcpdump&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4

Vulnerabilities (33)

CVE	Sev	CVSS	Affected versions	Fixed in	Published	Description
CVE-2017-13011	Cri	9.8	< 3.9.8-1.30.5.1	3.9.8-1.30.5.1	Sep 14, 2017	Several protocol parsers in tcpdump before 4.9.2 could cause a buffer overflow in util-print.c:bittok2str_internal().
CVE-2017-11543	Cri	9.8	< 3.9.8-1.30.5.1	3.9.8-1.30.5.1	Jul 23, 2017	tcpdump 4.9.0 has a buffer overflow in the sliplink_print function in print-sl.c.
CVE-2017-11542	Cri	9.8	< 3.9.8-1.30.5.1	3.9.8-1.30.5.1	Jul 23, 2017	tcpdump 4.9.0 has a heap-based buffer over-read in the pimv1_print function in print-pim.c.
CVE-2017-11541	Cri	9.8	< 3.9.8-1.30.5.1	3.9.8-1.30.5.1	Jul 23, 2017	tcpdump 4.9.0 has a heap-based buffer over-read in the lldp_print function in print-lldp.c, related to util-print.c.
CVE-2017-11108	Hig	7.5	< 3.9.8-1.30.5.1	3.9.8-1.30.5.1	Jul 8, 2017	tcpdump 4.9.0 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via crafted packet data. The crash occurs in the EXTRACT_16BITS function, called from the stp_print function for the Spanning Tree Protocol.
CVE-2017-5486	Cri	9.8	< 3.9.8-1.29.1	3.9.8-1.29.1	Jan 28, 2017	The ISO CLNS parser in tcpdump before 4.9.0 has a buffer overflow in print-isoclns.c:clnp_print().
CVE-2017-5485	Cri	9.8	< 3.9.8-1.29.1	3.9.8-1.29.1	Jan 28, 2017	The ISO CLNS parser in tcpdump before 4.9.0 has a buffer overflow in addrtoname.c:lookup_nsap().
CVE-2017-5484	Cri	9.8	< 3.9.8-1.29.1	3.9.8-1.29.1	Jan 28, 2017	The ATM parser in tcpdump before 4.9.0 has a buffer overflow in print-atm.c:sig_print().
CVE-2017-5483	Cri	9.8	< 3.9.8-1.29.1	3.9.8-1.29.1	Jan 28, 2017	The SNMP parser in tcpdump before 4.9.0 has a buffer overflow in print-snmp.c:asn1_parse().
CVE-2017-5204	Cri	9.8	< 3.9.8-1.29.1	3.9.8-1.29.1	Jan 28, 2017	The IPv6 parser in tcpdump before 4.9.0 has a buffer overflow in print-ip6.c:ip6_print().
CVE-2017-5203	Cri	9.8	< 3.9.8-1.29.1	3.9.8-1.29.1	Jan 28, 2017	The BOOTP parser in tcpdump before 4.9.0 has a buffer overflow in print-bootp.c:bootp_print().
CVE-2017-5202	Cri	9.8	< 3.9.8-1.29.1	3.9.8-1.29.1	Jan 28, 2017	The ISO CLNS parser in tcpdump before 4.9.0 has a buffer overflow in print-isoclns.c:clnp_print().
CVE-2016-8574	Cri	9.8	< 3.9.8-1.29.1	3.9.8-1.29.1	Jan 28, 2017	The FRF.15 parser in tcpdump before 4.9.0 has a buffer overflow in print-fr.c:frf15_print().
CVE-2016-7993	Cri	9.8	< 3.9.8-1.29.1	3.9.8-1.29.1	Jan 28, 2017	A bug in util-print.c:relts_print() in tcpdump before 4.9.0 could cause a buffer overflow in multiple protocol parsers (DNS, DVMRP, HSRP, IGMP, lightweight resolver protocol, PIM).
CVE-2016-7992	Cri	9.8	< 3.9.8-1.29.1	3.9.8-1.29.1	Jan 28, 2017	The Classical IP over ATM parser in tcpdump before 4.9.0 has a buffer overflow in print-cip.c:cip_if_print().
CVE-2016-7984	Cri	9.8	< 3.9.8-1.29.1	3.9.8-1.29.1	Jan 28, 2017	The TFTP parser in tcpdump before 4.9.0 has a buffer overflow in print-tftp.c:tftp_print().
CVE-2016-7983	Cri	9.8	< 3.9.8-1.29.1	3.9.8-1.29.1	Jan 28, 2017	The BOOTP parser in tcpdump before 4.9.0 has a buffer overflow in print-bootp.c:bootp_print().
CVE-2016-7975	Cri	9.8	< 3.9.8-1.30.8.1	3.9.8-1.30.8.1	Jan 28, 2017	The TCP parser in tcpdump before 4.9.0 has a buffer overflow in print-tcp.c:tcp_print().
CVE-2016-7974	Cri	9.8	< 3.9.8-1.29.1	3.9.8-1.29.1	Jan 28, 2017	The IP parser in tcpdump before 4.9.0 has a buffer overflow in print-ip.c, multiple functions.
CVE-2016-7973	Cri	9.8	< 3.9.8-1.29.1	3.9.8-1.29.1	Jan 28, 2017	The AppleTalk parser in tcpdump before 4.9.0 has a buffer overflow in print-atalk.c, multiple functions.

CVE-2017-13011CriSep 14, 2017
affected < 3.9.8-1.30.5.1fixed 3.9.8-1.30.5.1
Several protocol parsers in tcpdump before 4.9.2 could cause a buffer overflow in util-print.c:bittok2str_internal().
CVE-2017-11543CriJul 23, 2017
affected < 3.9.8-1.30.5.1fixed 3.9.8-1.30.5.1
tcpdump 4.9.0 has a buffer overflow in the sliplink_print function in print-sl.c.
CVE-2017-11542CriJul 23, 2017
affected < 3.9.8-1.30.5.1fixed 3.9.8-1.30.5.1
tcpdump 4.9.0 has a heap-based buffer over-read in the pimv1_print function in print-pim.c.
CVE-2017-11541CriJul 23, 2017
affected < 3.9.8-1.30.5.1fixed 3.9.8-1.30.5.1
tcpdump 4.9.0 has a heap-based buffer over-read in the lldp_print function in print-lldp.c, related to util-print.c.
CVE-2017-11108HigJul 8, 2017
affected < 3.9.8-1.30.5.1fixed 3.9.8-1.30.5.1
tcpdump 4.9.0 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via crafted packet data. The crash occurs in the EXTRACT_16BITS function, called from the stp_print function for the Spanning Tree Protocol.
CVE-2017-5486CriJan 28, 2017
affected < 3.9.8-1.29.1fixed 3.9.8-1.29.1
The ISO CLNS parser in tcpdump before 4.9.0 has a buffer overflow in print-isoclns.c:clnp_print().
CVE-2017-5485CriJan 28, 2017
affected < 3.9.8-1.29.1fixed 3.9.8-1.29.1
The ISO CLNS parser in tcpdump before 4.9.0 has a buffer overflow in addrtoname.c:lookup_nsap().
CVE-2017-5484CriJan 28, 2017
affected < 3.9.8-1.29.1fixed 3.9.8-1.29.1
The ATM parser in tcpdump before 4.9.0 has a buffer overflow in print-atm.c:sig_print().
CVE-2017-5483CriJan 28, 2017
affected < 3.9.8-1.29.1fixed 3.9.8-1.29.1
The SNMP parser in tcpdump before 4.9.0 has a buffer overflow in print-snmp.c:asn1_parse().
CVE-2017-5204CriJan 28, 2017
affected < 3.9.8-1.29.1fixed 3.9.8-1.29.1
The IPv6 parser in tcpdump before 4.9.0 has a buffer overflow in print-ip6.c:ip6_print().
CVE-2017-5203CriJan 28, 2017
affected < 3.9.8-1.29.1fixed 3.9.8-1.29.1
The BOOTP parser in tcpdump before 4.9.0 has a buffer overflow in print-bootp.c:bootp_print().
CVE-2017-5202CriJan 28, 2017
affected < 3.9.8-1.29.1fixed 3.9.8-1.29.1
The ISO CLNS parser in tcpdump before 4.9.0 has a buffer overflow in print-isoclns.c:clnp_print().
CVE-2016-8574CriJan 28, 2017
affected < 3.9.8-1.29.1fixed 3.9.8-1.29.1
The FRF.15 parser in tcpdump before 4.9.0 has a buffer overflow in print-fr.c:frf15_print().
CVE-2016-7993CriJan 28, 2017
affected < 3.9.8-1.29.1fixed 3.9.8-1.29.1
A bug in util-print.c:relts_print() in tcpdump before 4.9.0 could cause a buffer overflow in multiple protocol parsers (DNS, DVMRP, HSRP, IGMP, lightweight resolver protocol, PIM).
CVE-2016-7992CriJan 28, 2017
affected < 3.9.8-1.29.1fixed 3.9.8-1.29.1
The Classical IP over ATM parser in tcpdump before 4.9.0 has a buffer overflow in print-cip.c:cip_if_print().
CVE-2016-7984CriJan 28, 2017
affected < 3.9.8-1.29.1fixed 3.9.8-1.29.1
The TFTP parser in tcpdump before 4.9.0 has a buffer overflow in print-tftp.c:tftp_print().
CVE-2016-7983CriJan 28, 2017
affected < 3.9.8-1.29.1fixed 3.9.8-1.29.1
The BOOTP parser in tcpdump before 4.9.0 has a buffer overflow in print-bootp.c:bootp_print().
CVE-2016-7975CriJan 28, 2017
affected < 3.9.8-1.30.8.1fixed 3.9.8-1.30.8.1
The TCP parser in tcpdump before 4.9.0 has a buffer overflow in print-tcp.c:tcp_print().
CVE-2016-7974CriJan 28, 2017
affected < 3.9.8-1.29.1fixed 3.9.8-1.29.1
The IP parser in tcpdump before 4.9.0 has a buffer overflow in print-ip.c, multiple functions.
CVE-2016-7973CriJan 28, 2017
affected < 3.9.8-1.29.1fixed 3.9.8-1.29.1
The AppleTalk parser in tcpdump before 4.9.0 has a buffer overflow in print-atalk.c, multiple functions.

Page 1 of 2