Debian Tcpdump vulnerabilities

CVE-2004-0055 [MEDIUM] CVE-2004-0055: tcpdump - The print_attr_string function in print-radius.c for tcpdump 3.8.1 and earlier a... The print_attr_string function in print-radius.c for tcpdump 3.8.1 and earlier allows remote attackers to cause a denial of service (segmentation fault) via a RADIUS attribute with a large length value. Scope: local bookworm: resolved (fixed in 3.8.3-1) bullseye: resolved (fixed in 3.8.3-1) forky: resolved (fixed in 3.8.3-1) sid: resolved (fixed in 3.8.3-1) trixie:

CVE-2004-0184 [MEDIUM] CVE-2004-0184: tcpdump - Integer underflow in the isakmp_id_print for TCPDUMP 3.8.1 and earlier allows re... Integer underflow in the isakmp_id_print for TCPDUMP 3.8.1 and earlier allows remote attackers to cause a denial of service (crash) via an ISAKMP packet with an Identification payload with a length that becomes less than 8 during byte order conversion, which causes an out-of-bounds read, as demonstrated by the Striker ISAKMP Protocol Test Suite. Scope: local bookwor

CVE-2004-0183 [MEDIUM] CVE-2004-0183: tcpdump - TCPDUMP 3.8.1 and earlier allows remote attackers to cause a denial of service (... TCPDUMP 3.8.1 and earlier allows remote attackers to cause a denial of service (crash) via ISAKMP packets containing a Delete payload with a large number of SPI's, which causes an out-of-bounds read, as demonstrated by the Striker ISAKMP Protocol Test Suite. Scope: local bookworm: resolved (fixed in 3.7.2-4) bullseye: resolved (fixed in 3.7.2-4) forky: resolved (fix

CVE-2003-0989 [HIGH] CVE-2003-0989: tcpdump - tcpdump before 3.8.1 allows remote attackers to cause a denial of service (infin... tcpdump before 3.8.1 allows remote attackers to cause a denial of service (infinite loop) via certain ISAKMP packets, a different vulnerability than CVE-2004-0057. Scope: local bookworm: resolved (fixed in 3.8.1) bullseye: resolved (fixed in 3.8.1) forky: resolved (fixed in 3.8.1) sid: resolved (fixed in 3.8.1) trixie: resolved (fixed in 3.8.1)

CVE-2003-1029 [MEDIUM] CVE-2003-1029: tcpdump - The L2TP protocol parser in tcpdump 3.8.1 and earlier allows remote attackers to... The L2TP protocol parser in tcpdump 3.8.1 and earlier allows remote attackers to cause a denial of service (infinite loop and memory consumption) via a packet with invalid data to UDP port 1701, which causes l2tp_avp_print to use a bad length value when calling print_octets. Scope: local bookworm: resolved (fixed in 3.8.3-1) bullseye: resolved (fixed in 3.8.3-1) for

CVE-2003-0108 [MEDIUM] CVE-2003-0108: tcpdump - isakmp_sub_print in tcpdump 3.6 through 3.7.1 allows remote attackers to cause a... isakmp_sub_print in tcpdump 3.6 through 3.7.1 allows remote attackers to cause a denial of service (CPU consumption) via a certain malformed ISAKMP packet to UDP port 500, which causes tcpdump to enter an infinite loop. Scope: local bookworm: resolved (fixed in 3.7.1-1.2) bullseye: resolved (fixed in 3.7.1-1.2) forky: resolved (fixed in 3.7.1-1.2) sid: resolved (fix

CVE-2003-0145 [MEDIUM] CVE-2003-0145: tcpdump - Unknown vulnerability in tcpdump before 3.7.2 related to an inability to "Handle... Unknown vulnerability in tcpdump before 3.7.2 related to an inability to "Handle unknown RADIUS attributes properly," allows remote attackers to cause a denial of service (infinite loop), a different vulnerability than CAN-2003-0093. Scope: local bookworm: resolved (fixed in 3.7.2-1) bullseye: resolved (fixed in 3.7.2-1) forky: resolved (fixed in 3.7.2-1) sid: resol

CVE-2003-0093 [MEDIUM] CVE-2003-0093: tcpdump - The RADIUS decoder in tcpdump 3.6.2 and earlier allows remote attackers to cause... The RADIUS decoder in tcpdump 3.6.2 and earlier allows remote attackers to cause a denial of service (crash) via an invalid RADIUS packet with a header length field of 0, which causes tcpdump to generate data within an infinite loop. Scope: local bookworm: resolved (fixed in 3.7.1-1) bullseye: resolved (fixed in 3.7.1-1) forky: resolved (fixed in 3.7.1-1) sid: resol

CVE-2003-0194 [MEDIUM] CVE-2003-0194: tcpdump - tcpdump does not properly drop privileges to the pcap user when starting up. tcpdump does not properly drop privileges to the pcap user when starting up. Scope: local bookworm: resolved bullseye: resolved forky: resolved sid: resolved trixie: resolved

CVE-2002-1350 [HIGH] CVE-2002-1350: tcpdump - The BGP decoding routines in tcpdump 3.6.x before 3.7 do not properly copy data,... The BGP decoding routines in tcpdump 3.6.x before 3.7 do not properly copy data, which allows remote attackers to cause a denial of service (application crash). Scope: local bookworm: resolved (fixed in 3.7.2-1) bullseye: resolved (fixed in 3.7.2-1) forky: resolved (fixed in 3.7.2-1) sid: resolved (fixed in 3.7.2-1) trixie: resolved (fixed in 3.7.2-1)

CVE-2002-0380 [HIGH] CVE-2002-0380: tcpdump - Buffer overflow in tcpdump 3.6.2 and earlier allows remote attackers to cause a ... Buffer overflow in tcpdump 3.6.2 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via an NFS packet. Scope: local bookworm: resolved (fixed in 3.7.1-1.2) bullseye: resolved (fixed in 3.7.1-1.2) forky: resolved (fixed in 3.7.1-1.2) sid: resolved (fixed in 3.7.1-1.2) trixie: resolved (fixed in 3.7.1-1.2)