CVE-2017-16808Out-of-bounds Read in Tcpdump

CWE-125Out-of-bounds Read11 documents9 sources
Severity
5.5MEDIUMNVD
EPSS
1.5%
top 18.78%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
TcpdumpDebian TcpdumpApple Macos Catalina 10.15.2 Security Update 2019-002 Mojave Security Update 2019-007
Timeline
PublishedNov 13
Latest updateMay 13

Description

tcpdump before 4.9.3 has a heap-based buffer over-read related to aoe_print in print-aoe.c and lookup_emem in addrtoname.c.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages4 packages

debiandebian/tcpdump< tcpdump 4.9.3~git20190901-1 (bookworm)
Debiantcpdump/tcpdump< 4.9.3~git20190901-1+3
NVDtcpdump/tcpdump4.9.2

🔴Vulnerability Details

2
GHSA
GHSA-j4v3-95xv-q35p: tcpdump before 42022-05-13
OSV
CVE-2017-16808: tcpdump before 42017-11-13

📋Vendor Advisories

5
Ubuntu
tcpdump vulnerabilities2020-01-27
Ubuntu
tcpdump vulnerabilities2020-01-27
Apple
CVE-2017-16808: macOS Catalina 10.15.2, Security Update 2019-002 Mojave, Security Update 2019-007 High Sierra2019-12-10
Red Hat
tcpdump: heap-based buffer over-read in aoe_print in print-aoe.c and lookup_emem in addrtoname.c2017-11-13
Debian
CVE-2017-16808: tcpdump - tcpdump before 4.9.3 has a heap-based buffer over-read related to aoe_print in p...2017

💬Community

3
HackerOne
tcpdump before 4.9.3 has a heap-based buffer over-read related to aoe_print in print-aoe.c and lookup_emem in addrtoname.c2021-07-23
Bugzilla
CVE-2017-16808 tcpdump: heap-based buffer over-read in aoe_print in print-aoe.c and lookup_emem in addrtoname.c2017-11-23
Bugzilla
CVE-2017-16808 tcpdump: heap-based buffer over-read in aoe_print in print-aoe.c and lookup_emem in addrtoname.c [fedora-all]2017-11-23