CVE-2023-1801 — Out-of-bounds Write in Tcpdump Group Tcpdump

CWE-787 — Out-of-bounds Write9 documents7 sources

Severity

6.5MEDIUMNVD

EPSS

0.1%

top 77.95%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Tcpdump THE Tcpdump Group Tcpdump

Timeline

PublishedApr 7

Latest updateJul 24

Description

The SMB protocol decoder in tcpdump version 4.99.3 can perform an out-of-bounds write when decoding a crafted network packet.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:HExploitability: 2.8 | Impact: 3.6

Affected Packages3 packages

▶Debiantcpdump/tcpdump< 4.99.4-2+1

▶NVDtcpdump/tcpdump4.99.3

▶CVEListV5the_tcpdump_group/tcpdump4.99.3

Patches

Patch: github.com ↗Patch: github.com ↗Patch: github.com ↗

🔴Vulnerability Details

GHSA

GHSA-44xc-f95p-5vmh: The SMB protocol decoder in tcpdump version 4↗2023-04-07

▶

CVEList

CVE-2023-1801: The SMB protocol decoder in tcpdump version 4↗2023-04-07

▶

OSV

CVE-2023-1801: The SMB protocol decoder in tcpdump version 4↗2023-04-07

▶

📋Vendor Advisories

Apple

CVE-2023-1801: macOS Monterey 12.6.8↗2023-07-24

▶

Apple

CVE-2023-1801: macOS Big Sur 11.7.9↗2023-07-24

▶

Apple

CVE-2023-1801: macOS Ventura 13.5↗2023-07-24

▶

Red Hat

tcpdump: OOB write in SMB decoder↗2023-04-07

▶

Debian

CVE-2023-1801: tcpdump - The SMB protocol decoder in tcpdump version 4.99.3 can perform an out-of-bounds ...↗2023

▶