CVE-2018-14468

CWE-125 — Out-of-bounds Read12 documents9 sources

Severity

7.5HIGH

EPSS

0.7%

top 28.47%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Apple MAC OS X Tcpdump Tcpdump F5 Big-ip Access Policy Manager +20 more

Timeline

PublishedOct 3

Latest updateMay 24

Description

The FRF.16 parser in tcpdump before 4.9.3 has a buffer over-read in print-fr.c:mfr_print().

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages21 packages

▶NVDtcpdump/tcpdump< 4.9.3

▶Debiantcpdump< 4.9.3-1+3

▶NVDapple/mac_os_x< 10.15.2

▶NVDf5/big-ip_analytics11.6.0 — 11.6.5+4

▶NVDf5/big-ip_edge_gateway11.6.0 — 11.6.5+4

Also affects: Debian Linux 10.0, 8.0, 9.0, Fedora 29, 30, 31, Enterprise Linux 7.0, 8.0

Patches

Patch: github.com ↗Patch: github.com ↗

🔴Vulnerability Details

GHSA

GHSA-75jx-pcxc-2v2f: The FRF↗2022-05-24

▶

CVEList

CVE-2018-14468: The FRF↗2019-10-03

▶

OSV

CVE-2018-14468: The FRF↗2019-10-03

▶

📋Vendor Advisories

Ubuntu

tcpdump vulnerabilities↗2020-01-27

▶

Ubuntu

tcpdump vulnerabilities↗2020-01-27

▶

Apple

CVE-2018-14468: macOS Catalina 10.15.2, Security Update 2019-002 Mojave, Security Update 2019-007 High Sierra↗2019-12-10

▶

Red Hat

tcpdump: Buffer over-read in mfr_print() function in print-fr.c↗2019-10-02

▶

Debian

CVE-2018-14468: tcpdump - The FRF.16 parser in tcpdump before 4.9.3 has a buffer over-read in print-fr.c:m...↗2018

▶

💬Community

Bugzilla

CVE-2018-10105 CVE-2018-14461 CVE-2018-14462 CVE-2018-14463 CVE-2018-14464 CVE-2018-14465 CVE-2018-14466 CVE-2018-14467 CVE-2018-14468 CVE-2018-14469 CVE-2018-14470 CVE-2018-14879 CVE-2018-14880 CVE-2↗2019-10-11

▶

Bugzilla

CVE-2018-14468 tcpdump: Buffer over-read in mfr_print() function in print-fr.c↗2019-10-10

▶

Bugzilla

CVE-2018-9260 wireshark: IEEE 802.15.4 dissector crash in epan/dissectors/packet-ieee802154.c↗2018-04-10

▶

External resources

NVD MITRE

Affected products23

Apple MAC OS Xfixed in 10.15.2

Debian Debian Linuxv10.0v8.0v9.0

F5 Big-ip Access Policy Manager≥ 11.6.0, ≤ 11.6.5≥ 12.1.0, ≤ 12.1.5≥ 13.1.0, ≤ 13.1.3+2 more

F5 Big-ip Advanced Firewall Manager≥ 11.6.0, ≤ 11.6.5≥ 12.1.0, ≤ 12.1.5≥ 13.1.0, ≤ 13.1.3+2 more

F5 Big-ip Analytics≥ 11.6.0, ≤ 11.6.5≥ 12.1.0, ≤ 12.1.5≥ 13.1.0, ≤ 13.1.3+2 more

F5 Big-ip Application Acceleration Manager≥ 11.6.0, ≤ 11.6.5≥ 12.1.0, ≤ 12.1.5≥ 13.1.0, ≤ 13.1.3+2 more

F5 Big-ip Application Security Manager≥ 11.6.0, ≤ 11.6.5≥ 12.1.0, ≤ 12.1.5≥ 13.1.0, ≤ 13.1.3+2 more

F5 Big-ip Domain Name System≥ 11.6.0, ≤ 11.6.5≥ 12.1.0, ≤ 12.1.5≥ 13.1.0, ≤ 13.1.3+2 more

F5 Big-ip Edge Gateway≥ 11.6.0, ≤ 11.6.5≥ 12.1.0, ≤ 12.1.5≥ 13.1.0, ≤ 13.1.3+2 more

F5 Big-ip Fraud Protection Service≥ 11.6.0, ≤ 11.6.5≥ 12.1.0, ≤ 12.1.5≥ 13.1.0, ≤ 13.1.3+2 more

Disclosure

PublishedOct 3, 2019

Latest updateMay 24, 2022