Debian Tcpdump vulnerabilities

191 known vulnerabilities affecting debian/tcpdump.

Total CVEs

191

CISA KEV

Public exploits

Exploited in wild

Severity breakdown

CRITICAL132HIGH30MEDIUM17LOW12

Vulnerabilities

Page 1 of 10

CVE-2024-2397LOWCVSS 6.22024

CVE-2024-2397 [MEDIUM] CVE-2024-2397: tcpdump - Due to a bug in packet data buffers management, the PPP printer in tcpdump can e... Due to a bug in packet data buffers management, the PPP printer in tcpdump can enter an infinite loop when reading a crafted DLT_PPP_SERIAL .pcap savefile. This problem does not affect any tcpdump release, but it affected the git master branch from 2023-06-05 to 2024-03-21. Scope: local bookworm: resolved bullseye: resolved forky: resolved sid: resolved trixie: reso

debian

CVE-2023-1801LOWCVSS 6.5fixed in tcpdump 4.99.4-2 (forky)2023

CVE-2023-1801 [MEDIUM] CVE-2023-1801: tcpdump - The SMB protocol decoder in tcpdump version 4.99.3 can perform an out-of-bounds ... The SMB protocol decoder in tcpdump version 4.99.3 can perform an out-of-bounds write when decoding a crafted network packet. Scope: local bookworm: open bullseye: open forky: resolved (fixed in 4.99.4-2) sid: resolved (fixed in 4.99.4-2) trixie: resolved (fixed in 4.99.4-2)

debian

CVE-2020-8036LOWCVSS 7.52020

CVE-2020-8036 [HIGH] CVE-2020-8036: tcpdump - The tok2strbuf() function in tcpdump 4.10.0-PRE-GIT was used by the SOME/IP diss... The tok2strbuf() function in tcpdump 4.10.0-PRE-GIT was used by the SOME/IP dissector in an unsafe way. Scope: local bookworm: resolved bullseye: resolved forky: resolved sid: resolved trixie: resolved

debian

CVE-2020-8037LOWCVSS 7.5fixed in tcpdump 4.9.3-7 (bookworm)2020

CVE-2020-8037 [HIGH] CVE-2020-8037: tcpdump - The ppp decapsulator in tcpdump 4.9.3 can be convinced to allocate a large amoun... The ppp decapsulator in tcpdump 4.9.3 can be convinced to allocate a large amount of memory. Scope: local bookworm: resolved (fixed in 4.9.3-7) bullseye: resolved (fixed in 4.9.3-7) forky: resolved (fixed in 4.9.3-7) sid: resolved (fixed in 4.9.3-7) trixie: resolved (fixed in 4.9.3-7)

debian

CVE-2019-15167HIGHCVSS 7.5fixed in tcpdump 4.9.3-1 (bookworm)2019

CVE-2019-15167 [HIGH] CVE-2019-15167: tcpdump - The VRRP parser in tcpdump before 4.9.3 has a buffer over-read in print-vrrp.c:v... The VRRP parser in tcpdump before 4.9.3 has a buffer over-read in print-vrrp.c:vrrp_print() for VRRP version 3, a different vulnerability than CVE-2018-14463. Scope: local bookworm: resolved (fixed in 4.9.3-1) bullseye: resolved (fixed in 4.9.3-1) forky: resolved (fixed in 4.9.3-1) sid: resolved (fixed in 4.9.3-1) trixie: resolved (fixed in 4.9.3-1)

debian

CVE-2019-15166LOWCVSS 1.6fixed in tcpdump 4.9.3-1 (bookworm)2019

CVE-2019-15166 [LOW] CVE-2019-15166: tcpdump - lmp_print_data_link_subobjs() in print-lmp.c in tcpdump before 4.9.3 lacks certa... lmp_print_data_link_subobjs() in print-lmp.c in tcpdump before 4.9.3 lacks certain bounds checks. Scope: local bookworm: resolved (fixed in 4.9.3-1) bullseye: resolved (fixed in 4.9.3-1) forky: resolved (fixed in 4.9.3-1) sid: resolved (fixed in 4.9.3-1) trixie: resolved (fixed in 4.9.3-1)

debian

CVE-2019-1010220LOWCVSS 3.32019

CVE-2019-1010220 [LOW] CVE-2019-1010220: tcpdump - tcpdump.org tcpdump 4.9.2 is affected by: CWE-126: Buffer Over-read. The impact ... tcpdump.org tcpdump 4.9.2 is affected by: CWE-126: Buffer Over-read. The impact is: May expose Saved Frame Pointer, Return Address etc. on stack. The component is: line 234: "ND_PRINT((ndo, "%s", buf));", in function named "print_prefix", in "print-hncp.c". The attack vector is: The victim must open a specially crafted pcap file. Scope: local bookworm: open bulls

debian

CVE-2018-10105CRITICALCVSS 9.8fixed in tcpdump 4.9.3-1 (bookworm)2018

CVE-2018-10105 [CRITICAL] CVE-2018-10105: tcpdump - tcpdump before 4.9.3 mishandles the printing of SMB data (issue 2 of 2). tcpdump before 4.9.3 mishandles the printing of SMB data (issue 2 of 2). Scope: local bookworm: resolved (fixed in 4.9.3-1) bullseye: resolved (fixed in 4.9.3-1) forky: resolved (fixed in 4.9.3-1) sid: resolved (fixed in 4.9.3-1) trixie: resolved (fixed in 4.9.3-1)

debian

CVE-2018-10103CRITICALCVSS 9.8fixed in tcpdump 4.9.3-1 (bookworm)2018

CVE-2018-10103 [CRITICAL] CVE-2018-10103: tcpdump - tcpdump before 4.9.3 mishandles the printing of SMB data (issue 1 of 2). tcpdump before 4.9.3 mishandles the printing of SMB data (issue 1 of 2). Scope: local bookworm: resolved (fixed in 4.9.3-1) bullseye: resolved (fixed in 4.9.3-1) forky: resolved (fixed in 4.9.3-1) sid: resolved (fixed in 4.9.3-1) trixie: resolved (fixed in 4.9.3-1)

debian

CVE-2018-14463HIGHCVSS 7.5fixed in tcpdump 4.9.3-1 (bookworm)2018

CVE-2018-14463 [HIGH] CVE-2018-14463: tcpdump - The VRRP parser in tcpdump before 4.9.3 has a buffer over-read in print-vrrp.c:v... The VRRP parser in tcpdump before 4.9.3 has a buffer over-read in print-vrrp.c:vrrp_print() for VRRP version 2, a different vulnerability than CVE-2019-15167. Scope: local bookworm: resolved (fixed in 4.9.3-1) bullseye: resolved (fixed in 4.9.3-1) forky: resolved (fixed in 4.9.3-1) sid: resolved (fixed in 4.9.3-1) trixie: resolved (fixed in 4.9.3-1)

debian

CVE-2018-16230HIGHCVSS 7.5fixed in tcpdump 4.9.3-1 (bookworm)2018

CVE-2018-16230 [HIGH] CVE-2018-16230: tcpdump - The BGP parser in tcpdump before 4.9.3 has a buffer over-read in print-bgp.c:bgp... The BGP parser in tcpdump before 4.9.3 has a buffer over-read in print-bgp.c:bgp_attr_print() (MP_REACH_NLRI). Scope: local bookworm: resolved (fixed in 4.9.3-1) bullseye: resolved (fixed in 4.9.3-1) forky: resolved (fixed in 4.9.3-1) sid: resolved (fixed in 4.9.3-1) trixie: resolved (fixed in 4.9.3-1)

debian

CVE-2018-14465HIGHCVSS 7.5fixed in tcpdump 4.9.3-1 (bookworm)2018

CVE-2018-14465 [HIGH] CVE-2018-14465: tcpdump - The RSVP parser in tcpdump before 4.9.3 has a buffer over-read in print-rsvp.c:r... The RSVP parser in tcpdump before 4.9.3 has a buffer over-read in print-rsvp.c:rsvp_obj_print(). Scope: local bookworm: resolved (fixed in 4.9.3-1) bullseye: resolved (fixed in 4.9.3-1) forky: resolved (fixed in 4.9.3-1) sid: resolved (fixed in 4.9.3-1) trixie: resolved (fixed in 4.9.3-1)

debian

CVE-2018-14880HIGHCVSS 7.5fixed in tcpdump 4.9.3-1 (bookworm)2018

CVE-2018-14880 [HIGH] CVE-2018-14880: tcpdump - The OSPFv3 parser in tcpdump before 4.9.3 has a buffer over-read in print-ospf6.... The OSPFv3 parser in tcpdump before 4.9.3 has a buffer over-read in print-ospf6.c:ospf6_print_lshdr(). Scope: local bookworm: resolved (fixed in 4.9.3-1) bullseye: resolved (fixed in 4.9.3-1) forky: resolved (fixed in 4.9.3-1) sid: resolved (fixed in 4.9.3-1) trixie: resolved (fixed in 4.9.3-1)

debian

CVE-2018-14881HIGHCVSS 7.5fixed in tcpdump 4.9.3-1 (bookworm)2018

CVE-2018-14881 [HIGH] CVE-2018-14881: tcpdump - The BGP parser in tcpdump before 4.9.3 has a buffer over-read in print-bgp.c:bgp... The BGP parser in tcpdump before 4.9.3 has a buffer over-read in print-bgp.c:bgp_capabilities_print() (BGP_CAPCODE_RESTART). Scope: local bookworm: resolved (fixed in 4.9.3-1) bullseye: resolved (fixed in 4.9.3-1) forky: resolved (fixed in 4.9.3-1) sid: resolved (fixed in 4.9.3-1) trixie: resolved (fixed in 4.9.3-1)

debian

CVE-2018-14466HIGHCVSS 7.5fixed in tcpdump 4.9.3-1 (bookworm)2018

CVE-2018-14466 [HIGH] CVE-2018-14466: tcpdump - The Rx parser in tcpdump before 4.9.3 has a buffer over-read in print-rx.c:rx_ca... The Rx parser in tcpdump before 4.9.3 has a buffer over-read in print-rx.c:rx_cache_find() and rx_cache_insert(). Scope: local bookworm: resolved (fixed in 4.9.3-1) bullseye: resolved (fixed in 4.9.3-1) forky: resolved (fixed in 4.9.3-1) sid: resolved (fixed in 4.9.3-1) trixie: resolved (fixed in 4.9.3-1)

debian

CVE-2018-14464HIGHCVSS 7.5fixed in tcpdump 4.9.3-1 (bookworm)2018

CVE-2018-14464 [HIGH] CVE-2018-14464: tcpdump - The LMP parser in tcpdump before 4.9.3 has a buffer over-read in print-lmp.c:lmp... The LMP parser in tcpdump before 4.9.3 has a buffer over-read in print-lmp.c:lmp_print_data_link_subobjs(). Scope: local bookworm: resolved (fixed in 4.9.3-1) bullseye: resolved (fixed in 4.9.3-1) forky: resolved (fixed in 4.9.3-1) sid: resolved (fixed in 4.9.3-1) trixie: resolved (fixed in 4.9.3-1)

debian

CVE-2018-14470HIGHCVSS 7.5fixed in tcpdump 4.9.3-1 (bookworm)2018

CVE-2018-14470 [HIGH] CVE-2018-14470: tcpdump - The Babel parser in tcpdump before 4.9.3 has a buffer over-read in print-babel.c... The Babel parser in tcpdump before 4.9.3 has a buffer over-read in print-babel.c:babel_print_v2(). Scope: local bookworm: resolved (fixed in 4.9.3-1) bullseye: resolved (fixed in 4.9.3-1) forky: resolved (fixed in 4.9.3-1) sid: resolved (fixed in 4.9.3-1) trixie: resolved (fixed in 4.9.3-1)

debian

CVE-2018-16452HIGHCVSS 7.5fixed in tcpdump 4.9.3-1 (bookworm)2018

CVE-2018-16452 [HIGH] CVE-2018-16452: tcpdump - The SMB parser in tcpdump before 4.9.3 has stack exhaustion in smbutil.c:smb_fda... The SMB parser in tcpdump before 4.9.3 has stack exhaustion in smbutil.c:smb_fdata() via recursion. Scope: local bookworm: resolved (fixed in 4.9.3-1) bullseye: resolved (fixed in 4.9.3-1) forky: resolved (fixed in 4.9.3-1) sid: resolved (fixed in 4.9.3-1) trixie: resolved (fixed in 4.9.3-1)

debian

CVE-2018-14879HIGHCVSS 7.0fixed in tcpdump 4.9.3-1 (bookworm)2018

CVE-2018-14879 [HIGH] CVE-2018-14879: tcpdump - The command-line argument parser in tcpdump before 4.9.3 has a buffer overflow i... The command-line argument parser in tcpdump before 4.9.3 has a buffer overflow in tcpdump.c:get_next_file(). Scope: local bookworm: resolved (fixed in 4.9.3-1) bullseye: resolved (fixed in 4.9.3-1) forky: resolved (fixed in 4.9.3-1) sid: resolved (fixed in 4.9.3-1) trixie: resolved (fixed in 4.9.3-1)

debian

CVE-2018-14461HIGHCVSS 7.5fixed in tcpdump 4.9.3-1 (bookworm)2018

CVE-2018-14461 [HIGH] CVE-2018-14461: tcpdump - The LDP parser in tcpdump before 4.9.3 has a buffer over-read in print-ldp.c:ldp... The LDP parser in tcpdump before 4.9.3 has a buffer over-read in print-ldp.c:ldp_tlv_print(). Scope: local bookworm: resolved (fixed in 4.9.3-1) bullseye: resolved (fixed in 4.9.3-1) forky: resolved (fixed in 4.9.3-1) sid: resolved (fixed in 4.9.3-1) trixie: resolved (fixed in 4.9.3-1)

debian

1 / 10Next →