CVE-2017-5204: The IPv6 parser in tcpdump before 4.9.0 has a buffer overflow in print-ip6.c:ip6_print().

CVE-2017-5204 [CRITICAL] CVE-2017-5204: macOS Sierra 10.12.4, Security Update 2017-001 El Capitan, and Security Update 2017-001 Yosemite Apple Security Update: About the security content of macOS Sierra 10.12.4, Security Update 2017-001 El Capitan, and Security Update 2017-001 Yosemite Product: macOS Sierra 10.12.4, Security Update 2017-001 El Capitan, and Security Update 2017-001 Yosemite CVE: CVE-2017-5204 Component: CVE-2017-5204

CVE-2016-7922 tcpdump vulnerabilities Title: tcpdump vulnerabilities Summary: tcpdump could be made to crash or run programs if it received specially crafted network traffic. It was discovered that tcpdump incorrectly handled certain packets. A remote attacker could use this issue to cause tcpdump to crash, resulting in a denial of service, or possibly execute arbitrary code. In the default installation, attackers would be isolated by the tcpdump AppArmor profile. Instructions: This update uses a new upstream release, which includes additional bug fixes. In general, a standard system update will make all the necessary changes.

CVE-2017-5204 [CRITICAL] CWE-125 tcpdump: multiple overflow issues in protocol decoding tcpdump: multiple overflow issues in protocol decoding The IPv6 parser in tcpdump before 4.9.0 has a buffer overflow in print-ip6.c:ip6_print(). Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop. Statement: Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/se

CVE-2017-5204 [CRITICAL] CVE-2017-5204: tcpdump - The IPv6 parser in tcpdump before 4.9.0 has a buffer overflow in print-ip6.c:ip6... The IPv6 parser in tcpdump before 4.9.0 has a buffer overflow in print-ip6.c:ip6_print(). Scope: local bookworm: resolved (fixed in 4.9.0-1) bullseye: resolved (fixed in 4.9.0-1) forky: resolved (fixed in 4.9.0-1) sid: resolved (fixed in 4.9.0-1) trixie: resolved (fixed in 4.9.0-1)

CVE-2017-5204 [CRITICAL] CWE-119 GHSA-57w3-589g-v9r8: The IPv6 parser in tcpdump before 4 The IPv6 parser in tcpdump before 4.9.0 has a buffer overflow in print-ip6.c:ip6_print().

CVE-2017-5204 [CRITICAL] CVE-2017-5204: The IPv6 parser in tcpdump before 4 The IPv6 parser in tcpdump before 4.9.0 has a buffer overflow in print-ip6.c:ip6_print().

CVE-2017-5204 [CRITICAL] CVE-2017-5204: The IPv6 parser in tcpdump before 4.9.0 has a buffer overflow in print-ip6.c:ip6_print() CVE-2017-5204: The IPv6 parser in tcpdump before 4.9.0 has a buffer overflow in print-ip6.c:ip6_print() Reported to the project maintainer in October 2016. A specially crafted IPv6 packet could trigger a read outside of buffer in tcpdump. ``` ==27882==ERROR: AddressSanitizer: heap-buffer-overflow on address 0x60400000e000 at pc 0x0000005724b5 bp 0x7ffe8e17a790 sp 0x7ffe8e17a788 READ of size 1 at 0x60400000e000 thread T0 #0 0x5724b4 in ip6_print /root/tcpdump/./print-ip6.c:296:4 #1 0x5707d0 in ipN_print /root/tcpdump/./print-ip.c:689:3 #2 0x61cde7 in raw_if_print /root/tcpdump/./print-raw.c:42:2 #3 0x4ddd19 in pretty_print_packet /root/tcpdump/./print.c:339:18 #4 0x4cc5db in print_packet /root/tcpdump/./tcpdump.c:2492:2 #5 0x7672a0 in pcap_offline_read /root/libpcap/./savefile.c:527:4 #6

[CRITICAL] tcpdump: multiple overflow issues in protocol decoding tcpdump: multiple overflow issues in protocol decoding Multiple buffer overflows, and one integer overflow, in protocol decoding were found that may cause incorrect decoding, segmentation fault or (in the case of integer overflow) an infinite loop. These issues can be be exploited either locally, by making the target user decode a crafted .pcap file using tcpdump, or remotely by sending crafted packets to the network segment where the target system is running tcpdump decoding the live packet capture. Ability to send crafted packets to the target network segment is limited by the protocols' ability to cross network segments, or presence of firewall rules. Upstream changelog: http://www.tcpdump.org/tcpdump-changes.txt Discussion: Acknowledgments: Name: the Tcpdump project --- Created

[CRITICAL] tcpdump: various flaws [fedora-all] tcpdump: various flaws [fedora-all] This is an automatically created tracking bug! It was created to ensure that one or more security vulnerabilities are fixed in affected versions of Fedora. For comments that are specific to the vulnerability please use bugs filed against the "Security Response" product referenced in the "Blocks" field. For more information see: http://fedoraproject.org/wiki/Security/TrackingBugs When submitting as an update, use the fedpkg template provided in the next comment(s). This will include the bug IDs of this tracking bug as well as the relevant top-level CVE bugs. Please also mention the CVE IDs being fixed in the RPM changelog and the fedpkg commit message. NOTE: this issue affects multiple supported versions of Fedora. While only one tracking bug has be