Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2015-2154 (GCVE-0-2015-2154)
Vulnerability from cvelistv5 – Published: 2015-03-24 17:00 – Updated: 2024-08-06 05:10
VLAI?
EPSS
Summary
The osi_print_cksum function in print-isoclns.c in the ethernet printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a crafted (1) length, (2) offset, or (3) base pointer checksum value.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
16 references
Date Public ?
2015-03-09 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T05:10:14.454Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1201797"
},
{
"name": "FEDORA-2015-4939",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA",
"x_transferred"
],
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-March/153834.html"
},
{
"name": "MDVSA-2015:125",
"tags": [
"vendor-advisory",
"x_refsource_MANDRIVA",
"x_transferred"
],
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2015:125"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://packetstormsecurity.com/files/130730/tcpdump-Denial-Of-Service-Code-Execution.html"
},
{
"name": "RHSA-2017:1871",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html"
},
{
"name": "1031937",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK",
"x_transferred"
],
"url": "http://www.securitytracker.com/id/1031937"
},
{
"name": "GLSA-201510-04",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO",
"x_transferred"
],
"url": "https://security.gentoo.org/glsa/201510-04"
},
{
"name": "FEDORA-2015-4804",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA",
"x_transferred"
],
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-March/153999.html"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://advisories.mageia.org/MGASA-2015-0114.html"
},
{
"name": "73017",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/73017"
},
{
"name": "USN-2580-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU",
"x_transferred"
],
"url": "http://www.ubuntu.com/usn/USN-2580-1"
},
{
"name": "20150309 tcpdump 4.7.2 remote crashes",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ",
"x_transferred"
],
"url": "http://www.securityfocus.com/archive/1/534829/100/0/threaded"
},
{
"name": "openSUSE-SU-2015:0616",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://lists.opensuse.org/opensuse-updates/2015-03/msg00084.html"
},
{
"name": "MDVSA-2015:182",
"tags": [
"vendor-advisory",
"x_refsource_MANDRIVA",
"x_transferred"
],
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2015:182"
},
{
"name": "DSA-3193",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN",
"x_transferred"
],
"url": "http://www.debian.org/security/2015/dsa-3193"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2015-03-09T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "The osi_print_cksum function in print-isoclns.c in the ethernet printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a crafted (1) length, (2) offset, or (3) base pointer checksum value."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2018-10-09T18:57:01.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1201797"
},
{
"name": "FEDORA-2015-4939",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA"
],
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-March/153834.html"
},
{
"name": "MDVSA-2015:125",
"tags": [
"vendor-advisory",
"x_refsource_MANDRIVA"
],
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2015:125"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://packetstormsecurity.com/files/130730/tcpdump-Denial-Of-Service-Code-Execution.html"
},
{
"name": "RHSA-2017:1871",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html"
},
{
"name": "1031937",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK"
],
"url": "http://www.securitytracker.com/id/1031937"
},
{
"name": "GLSA-201510-04",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO"
],
"url": "https://security.gentoo.org/glsa/201510-04"
},
{
"name": "FEDORA-2015-4804",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA"
],
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-March/153999.html"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://advisories.mageia.org/MGASA-2015-0114.html"
},
{
"name": "73017",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/73017"
},
{
"name": "USN-2580-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU"
],
"url": "http://www.ubuntu.com/usn/USN-2580-1"
},
{
"name": "20150309 tcpdump 4.7.2 remote crashes",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ"
],
"url": "http://www.securityfocus.com/archive/1/534829/100/0/threaded"
},
{
"name": "openSUSE-SU-2015:0616",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://lists.opensuse.org/opensuse-updates/2015-03/msg00084.html"
},
{
"name": "MDVSA-2015:182",
"tags": [
"vendor-advisory",
"x_refsource_MANDRIVA"
],
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2015:182"
},
{
"name": "DSA-3193",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN"
],
"url": "http://www.debian.org/security/2015/dsa-3193"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2015-2154",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The osi_print_cksum function in print-isoclns.c in the ethernet printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a crafted (1) length, (2) offset, or (3) base pointer checksum value."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=1201797",
"refsource": "CONFIRM",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1201797"
},
{
"name": "FEDORA-2015-4939",
"refsource": "FEDORA",
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-March/153834.html"
},
{
"name": "MDVSA-2015:125",
"refsource": "MANDRIVA",
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2015:125"
},
{
"name": "http://packetstormsecurity.com/files/130730/tcpdump-Denial-Of-Service-Code-Execution.html",
"refsource": "MISC",
"url": "http://packetstormsecurity.com/files/130730/tcpdump-Denial-Of-Service-Code-Execution.html"
},
{
"name": "RHSA-2017:1871",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"name": "http://www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html",
"refsource": "CONFIRM",
"url": "http://www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html"
},
{
"name": "1031937",
"refsource": "SECTRACK",
"url": "http://www.securitytracker.com/id/1031937"
},
{
"name": "GLSA-201510-04",
"refsource": "GENTOO",
"url": "https://security.gentoo.org/glsa/201510-04"
},
{
"name": "FEDORA-2015-4804",
"refsource": "FEDORA",
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-March/153999.html"
},
{
"name": "http://advisories.mageia.org/MGASA-2015-0114.html",
"refsource": "CONFIRM",
"url": "http://advisories.mageia.org/MGASA-2015-0114.html"
},
{
"name": "73017",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/73017"
},
{
"name": "USN-2580-1",
"refsource": "UBUNTU",
"url": "http://www.ubuntu.com/usn/USN-2580-1"
},
{
"name": "20150309 tcpdump 4.7.2 remote crashes",
"refsource": "BUGTRAQ",
"url": "http://www.securityfocus.com/archive/1/534829/100/0/threaded"
},
{
"name": "openSUSE-SU-2015:0616",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-updates/2015-03/msg00084.html"
},
{
"name": "MDVSA-2015:182",
"refsource": "MANDRIVA",
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2015:182"
},
{
"name": "DSA-3193",
"refsource": "DEBIAN",
"url": "http://www.debian.org/security/2015/dsa-3193"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2015-2154",
"datePublished": "2015-03-24T17:00:00.000Z",
"dateReserved": "2015-02-28T00:00:00.000Z",
"dateUpdated": "2024-08-06T05:10:14.454Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2015-2154",
"date": "2026-05-20",
"epss": "0.01771",
"percentile": "0.82874"
},
"fkie_nvd": {
"configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:tcpdump:tcpdump:*:*:*:*:*:*:*:*\", \"versionEndIncluding\": \"4.7.0\", \"matchCriteriaId\": \"56FA341B-6512-4C60-BEDC-F118B04CF17B\"}]}]}]",
"descriptions": "[{\"lang\": \"en\", \"value\": \"The osi_print_cksum function in print-isoclns.c in the ethernet printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a crafted (1) length, (2) offset, or (3) base pointer checksum value.\"}, {\"lang\": \"es\", \"value\": \"La funci\\u00f3n osi_print_cksum en print-isoclns.c en la impresora ethernet en tcpdump anterior a 4.7.2 permite a atacantes remotos causar una denegaci\\u00f3n de servicio (lectura fuera de rango y ca\\u00edda) a trav\\u00e9s de un valor de (1) longitud, (2) desplazamiento, o (3) checksum de puntero base.\"}]",
"id": "CVE-2015-2154",
"lastModified": "2024-11-21T02:26:53.440",
"metrics": "{\"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:L/Au:N/C:N/I:N/A:P\", \"baseScore\": 5.0, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"LOW\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"PARTIAL\"}, \"baseSeverity\": \"MEDIUM\", \"exploitabilityScore\": 10.0, \"impactScore\": 2.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
"published": "2015-03-24T17:59:07.820",
"references": "[{\"url\": \"http://advisories.mageia.org/MGASA-2015-0114.html\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://lists.fedoraproject.org/pipermail/package-announce/2015-March/153834.html\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://lists.fedoraproject.org/pipermail/package-announce/2015-March/153999.html\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://lists.opensuse.org/opensuse-updates/2015-03/msg00084.html\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://packetstormsecurity.com/files/130730/tcpdump-Denial-Of-Service-Code-Execution.html\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.debian.org/security/2015/dsa-3193\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.mandriva.com/security/advisories?name=MDVSA-2015:125\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.mandriva.com/security/advisories?name=MDVSA-2015:182\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.securityfocus.com/archive/1/534829/100/0/threaded\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.securityfocus.com/bid/73017\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.securitytracker.com/id/1031937\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.ubuntu.com/usn/USN-2580-1\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://access.redhat.com/errata/RHSA-2017:1871\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=1201797\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://security.gentoo.org/glsa/201510-04\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://advisories.mageia.org/MGASA-2015-0114.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://lists.fedoraproject.org/pipermail/package-announce/2015-March/153834.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://lists.fedoraproject.org/pipermail/package-announce/2015-March/153999.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://lists.opensuse.org/opensuse-updates/2015-03/msg00084.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://packetstormsecurity.com/files/130730/tcpdump-Denial-Of-Service-Code-Execution.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.debian.org/security/2015/dsa-3193\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.mandriva.com/security/advisories?name=MDVSA-2015:125\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.mandriva.com/security/advisories?name=MDVSA-2015:182\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.securityfocus.com/archive/1/534829/100/0/threaded\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.securityfocus.com/bid/73017\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.securitytracker.com/id/1031937\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.ubuntu.com/usn/USN-2580-1\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://access.redhat.com/errata/RHSA-2017:1871\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=1201797\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://security.gentoo.org/glsa/201510-04\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Modified",
"weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-119\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2015-2154\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2015-03-24T17:59:07.820\",\"lastModified\":\"2026-05-06T22:30:45.220\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"The osi_print_cksum function in print-isoclns.c in the ethernet printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a crafted (1) length, (2) offset, or (3) base pointer checksum value.\"},{\"lang\":\"es\",\"value\":\"La funci\u00f3n osi_print_cksum en print-isoclns.c en la impresora ethernet en tcpdump anterior a 4.7.2 permite a atacantes remotos causar una denegaci\u00f3n de servicio (lectura fuera de rango y ca\u00edda) a trav\u00e9s de un valor de (1) longitud, (2) desplazamiento, o (3) checksum de puntero base.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:N/I:N/A:P\",\"baseScore\":5.0,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":10.0,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-119\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:tcpdump:tcpdump:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"4.7.0\",\"matchCriteriaId\":\"56FA341B-6512-4C60-BEDC-F118B04CF17B\"}]}]}],\"references\":[{\"url\":\"http://advisories.mageia.org/MGASA-2015-0114.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://lists.fedoraproject.org/pipermail/package-announce/2015-March/153834.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://lists.fedoraproject.org/pipermail/package-announce/2015-March/153999.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://lists.opensuse.org/opensuse-updates/2015-03/msg00084.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://packetstormsecurity.com/files/130730/tcpdump-Denial-Of-Service-Code-Execution.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.debian.org/security/2015/dsa-3193\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDVSA-2015:125\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDVSA-2015:182\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/archive/1/534829/100/0/threaded\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/bid/73017\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securitytracker.com/id/1031937\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.ubuntu.com/usn/USN-2580-1\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:1871\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=1201797\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://security.gentoo.org/glsa/201510-04\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://advisories.mageia.org/MGASA-2015-0114.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://lists.fedoraproject.org/pipermail/package-announce/2015-March/153834.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://lists.fedoraproject.org/pipermail/package-announce/2015-March/153999.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://lists.opensuse.org/opensuse-updates/2015-03/msg00084.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://packetstormsecurity.com/files/130730/tcpdump-Denial-Of-Service-Code-Execution.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.debian.org/security/2015/dsa-3193\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDVSA-2015:125\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDVSA-2015:182\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/archive/1/534829/100/0/threaded\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/bid/73017\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securitytracker.com/id/1031937\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.ubuntu.com/usn/USN-2580-1\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:1871\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=1201797\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://security.gentoo.org/glsa/201510-04\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
}
}
CNVD-2015-01967
Vulnerability from cnvd - Published: 2015-03-25
VLAI Severity ?
Title
tcpdump拒绝服务漏洞(CNVD-2015-01967)
Description
tcpdump 是一个运行在命令行下的嗅探工具。它允许用户拦截和显示发送或收到过网络连接到该计算机的TCP/IP和其他数据包。
tcpdump的ethernet printer存在远程拒绝服务漏洞,攻击者可利用此漏洞使受影响应用崩溃。
Severity
中
Patch Name
tcpdump拒绝服务漏洞(CNVD-2015-01967)的补丁
Patch Description
tcpdump 是一个运行在命令行下的嗅探工具。它允许用户拦截和显示发送或收到过网络连接到该计算机的TCP/IP和其他数据包。tcpdump的ethernet printer存在远程拒绝服务漏洞,攻击者可利用此漏洞使受影响应用崩溃。目前,供应商发布了安全公告及相关补丁信息,修复了此漏洞。
Formal description
用户可联系供应商获得补丁信息: http://www.ca.tcpdump.org/cve/0002-test-case-files-for-CVE-2015-2153-2154-2155.patch
Reference
http://www.securityfocus.com/bid/73017
Impacted products
| Name | LBL tcpdump |
|---|
{
"bids": {
"bid": {
"bidNumber": "73017"
}
},
"cves": {
"cve": {
"cveNumber": "CVE-2015-2154"
}
},
"description": "tcpdump \u662f\u4e00\u4e2a\u8fd0\u884c\u5728\u547d\u4ee4\u884c\u4e0b\u7684\u55c5\u63a2\u5de5\u5177\u3002\u5b83\u5141\u8bb8\u7528\u6237\u62e6\u622a\u548c\u663e\u793a\u53d1\u9001\u6216\u6536\u5230\u8fc7\u7f51\u7edc\u8fde\u63a5\u5230\u8be5\u8ba1\u7b97\u673a\u7684TCP/IP\u548c\u5176\u4ed6\u6570\u636e\u5305\u3002\r\n\r\ntcpdump\u7684ethernet printer\u5b58\u5728\u8fdc\u7a0b\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\uff0c\u653b\u51fb\u8005\u53ef\u5229\u7528\u6b64\u6f0f\u6d1e\u4f7f\u53d7\u5f71\u54cd\u5e94\u7528\u5d29\u6e83\u3002",
"discovererName": "Michael Richardson",
"formalWay": "\u7528\u6237\u53ef\u8054\u7cfb\u4f9b\u5e94\u5546\u83b7\u5f97\u8865\u4e01\u4fe1\u606f\uff1a\r\nhttp://www.ca.tcpdump.org/cve/0002-test-case-files-for-CVE-2015-2153-2154-2155.patch",
"isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
"number": "CNVD-2015-01967",
"openTime": "2015-03-25",
"patchDescription": "tcpdump \u662f\u4e00\u4e2a\u8fd0\u884c\u5728\u547d\u4ee4\u884c\u4e0b\u7684\u55c5\u63a2\u5de5\u5177\u3002\u5b83\u5141\u8bb8\u7528\u6237\u62e6\u622a\u548c\u663e\u793a\u53d1\u9001\u6216\u6536\u5230\u8fc7\u7f51\u7edc\u8fde\u63a5\u5230\u8be5\u8ba1\u7b97\u673a\u7684TCP/IP\u548c\u5176\u4ed6\u6570\u636e\u5305\u3002tcpdump\u7684ethernet printer\u5b58\u5728\u8fdc\u7a0b\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\uff0c\u653b\u51fb\u8005\u53ef\u5229\u7528\u6b64\u6f0f\u6d1e\u4f7f\u53d7\u5f71\u54cd\u5e94\u7528\u5d29\u6e83\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
"patchName": "tcpdump\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\uff08CNVD-2015-01967\uff09\u7684\u8865\u4e01",
"products": {
"product": "LBL tcpdump"
},
"referenceLink": "http://www.securityfocus.com/bid/73017",
"serverity": "\u4e2d",
"submitTime": "2015-03-24",
"title": "tcpdump\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\uff08CNVD-2015-01967\uff09"
}
FKIE_CVE-2015-2154
Vulnerability from fkie_nvd - Published: 2015-03-24 17:59 - Updated: 2026-05-06 22:30
Severity ?
Summary
The osi_print_cksum function in print-isoclns.c in the ethernet printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a crafted (1) length, (2) offset, or (3) base pointer checksum value.
References
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:tcpdump:tcpdump:*:*:*:*:*:*:*:*",
"matchCriteriaId": "56FA341B-6512-4C60-BEDC-F118B04CF17B",
"versionEndIncluding": "4.7.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "The osi_print_cksum function in print-isoclns.c in the ethernet printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a crafted (1) length, (2) offset, or (3) base pointer checksum value."
},
{
"lang": "es",
"value": "La funci\u00f3n osi_print_cksum en print-isoclns.c en la impresora ethernet en tcpdump anterior a 4.7.2 permite a atacantes remotos causar una denegaci\u00f3n de servicio (lectura fuera de rango y ca\u00edda) a trav\u00e9s de un valor de (1) longitud, (2) desplazamiento, o (3) checksum de puntero base."
}
],
"id": "CVE-2015-2154",
"lastModified": "2026-05-06T22:30:45.220",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
]
},
"published": "2015-03-24T17:59:07.820",
"references": [
{
"source": "cve@mitre.org",
"url": "http://advisories.mageia.org/MGASA-2015-0114.html"
},
{
"source": "cve@mitre.org",
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-March/153834.html"
},
{
"source": "cve@mitre.org",
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-March/153999.html"
},
{
"source": "cve@mitre.org",
"url": "http://lists.opensuse.org/opensuse-updates/2015-03/msg00084.html"
},
{
"source": "cve@mitre.org",
"url": "http://packetstormsecurity.com/files/130730/tcpdump-Denial-Of-Service-Code-Execution.html"
},
{
"source": "cve@mitre.org",
"url": "http://www.debian.org/security/2015/dsa-3193"
},
{
"source": "cve@mitre.org",
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2015:125"
},
{
"source": "cve@mitre.org",
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2015:182"
},
{
"source": "cve@mitre.org",
"url": "http://www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html"
},
{
"source": "cve@mitre.org",
"url": "http://www.securityfocus.com/archive/1/534829/100/0/threaded"
},
{
"source": "cve@mitre.org",
"url": "http://www.securityfocus.com/bid/73017"
},
{
"source": "cve@mitre.org",
"url": "http://www.securitytracker.com/id/1031937"
},
{
"source": "cve@mitre.org",
"url": "http://www.ubuntu.com/usn/USN-2580-1"
},
{
"source": "cve@mitre.org",
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"source": "cve@mitre.org",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1201797"
},
{
"source": "cve@mitre.org",
"url": "https://security.gentoo.org/glsa/201510-04"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://advisories.mageia.org/MGASA-2015-0114.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-March/153834.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-March/153999.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://lists.opensuse.org/opensuse-updates/2015-03/msg00084.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://packetstormsecurity.com/files/130730/tcpdump-Denial-Of-Service-Code-Execution.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.debian.org/security/2015/dsa-3193"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2015:125"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2015:182"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.securityfocus.com/archive/1/534829/100/0/threaded"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.securityfocus.com/bid/73017"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.securitytracker.com/id/1031937"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.ubuntu.com/usn/USN-2580-1"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1201797"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://security.gentoo.org/glsa/201510-04"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-119"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
GHSA-78VX-8C5H-72JR
Vulnerability from github – Published: 2022-05-14 02:49 – Updated: 2022-05-14 02:49
VLAI?
Details
The osi_print_cksum function in print-isoclns.c in the ethernet printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a crafted (1) length, (2) offset, or (3) base pointer checksum value.
{
"affected": [],
"aliases": [
"CVE-2015-2154"
],
"database_specific": {
"cwe_ids": [
"CWE-119"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2015-03-24T17:59:00Z",
"severity": "MODERATE"
},
"details": "The osi_print_cksum function in print-isoclns.c in the ethernet printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a crafted (1) length, (2) offset, or (3) base pointer checksum value.",
"id": "GHSA-78vx-8c5h-72jr",
"modified": "2022-05-14T02:49:25Z",
"published": "2022-05-14T02:49:25Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2015-2154"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"type": "WEB",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1201797"
},
{
"type": "WEB",
"url": "https://security.gentoo.org/glsa/201510-04"
},
{
"type": "WEB",
"url": "http://advisories.mageia.org/MGASA-2015-0114.html"
},
{
"type": "WEB",
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-March/153834.html"
},
{
"type": "WEB",
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-March/153999.html"
},
{
"type": "WEB",
"url": "http://lists.opensuse.org/opensuse-updates/2015-03/msg00084.html"
},
{
"type": "WEB",
"url": "http://packetstormsecurity.com/files/130730/tcpdump-Denial-Of-Service-Code-Execution.html"
},
{
"type": "WEB",
"url": "http://www.debian.org/security/2015/dsa-3193"
},
{
"type": "WEB",
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2015:125"
},
{
"type": "WEB",
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2015:182"
},
{
"type": "WEB",
"url": "http://www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html"
},
{
"type": "WEB",
"url": "http://www.securityfocus.com/archive/1/534829/100/0/threaded"
},
{
"type": "WEB",
"url": "http://www.securityfocus.com/bid/73017"
},
{
"type": "WEB",
"url": "http://www.securitytracker.com/id/1031937"
},
{
"type": "WEB",
"url": "http://www.ubuntu.com/usn/USN-2580-1"
}
],
"schema_version": "1.4.0",
"severity": []
}
GSD-2015-2154
Vulnerability from gsd - Updated: 2023-12-13 01:20Details
The osi_print_cksum function in print-isoclns.c in the ethernet printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a crafted (1) length, (2) offset, or (3) base pointer checksum value.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2015-2154",
"description": "The osi_print_cksum function in print-isoclns.c in the ethernet printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a crafted (1) length, (2) offset, or (3) base pointer checksum value.",
"id": "GSD-2015-2154",
"references": [
"https://www.suse.com/security/cve/CVE-2015-2154.html",
"https://www.debian.org/security/2015/dsa-3193",
"https://access.redhat.com/errata/RHSA-2017:1871",
"https://ubuntu.com/security/CVE-2015-2154",
"https://advisories.mageia.org/CVE-2015-2154.html",
"https://alas.aws.amazon.com/cve/html/CVE-2015-2154.html",
"https://linux.oracle.com/cve/CVE-2015-2154.html"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2015-2154"
],
"details": "The osi_print_cksum function in print-isoclns.c in the ethernet printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a crafted (1) length, (2) offset, or (3) base pointer checksum value.",
"id": "GSD-2015-2154",
"modified": "2023-12-13T01:20:00.251853Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2015-2154",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The osi_print_cksum function in print-isoclns.c in the ethernet printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a crafted (1) length, (2) offset, or (3) base pointer checksum value."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=1201797",
"refsource": "CONFIRM",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1201797"
},
{
"name": "FEDORA-2015-4939",
"refsource": "FEDORA",
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-March/153834.html"
},
{
"name": "MDVSA-2015:125",
"refsource": "MANDRIVA",
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2015:125"
},
{
"name": "http://packetstormsecurity.com/files/130730/tcpdump-Denial-Of-Service-Code-Execution.html",
"refsource": "MISC",
"url": "http://packetstormsecurity.com/files/130730/tcpdump-Denial-Of-Service-Code-Execution.html"
},
{
"name": "RHSA-2017:1871",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"name": "http://www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html",
"refsource": "CONFIRM",
"url": "http://www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html"
},
{
"name": "1031937",
"refsource": "SECTRACK",
"url": "http://www.securitytracker.com/id/1031937"
},
{
"name": "GLSA-201510-04",
"refsource": "GENTOO",
"url": "https://security.gentoo.org/glsa/201510-04"
},
{
"name": "FEDORA-2015-4804",
"refsource": "FEDORA",
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-March/153999.html"
},
{
"name": "http://advisories.mageia.org/MGASA-2015-0114.html",
"refsource": "CONFIRM",
"url": "http://advisories.mageia.org/MGASA-2015-0114.html"
},
{
"name": "73017",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/73017"
},
{
"name": "USN-2580-1",
"refsource": "UBUNTU",
"url": "http://www.ubuntu.com/usn/USN-2580-1"
},
{
"name": "20150309 tcpdump 4.7.2 remote crashes",
"refsource": "BUGTRAQ",
"url": "http://www.securityfocus.com/archive/1/534829/100/0/threaded"
},
{
"name": "openSUSE-SU-2015:0616",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-updates/2015-03/msg00084.html"
},
{
"name": "MDVSA-2015:182",
"refsource": "MANDRIVA",
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2015:182"
},
{
"name": "DSA-3193",
"refsource": "DEBIAN",
"url": "http://www.debian.org/security/2015/dsa-3193"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:tcpdump:tcpdump:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "4.7.0",
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2015-2154"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "The osi_print_cksum function in print-isoclns.c in the ethernet printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a crafted (1) length, (2) offset, or (3) base pointer checksum value."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-119"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=1201797",
"refsource": "CONFIRM",
"tags": [],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1201797"
},
{
"name": "DSA-3193",
"refsource": "DEBIAN",
"tags": [],
"url": "http://www.debian.org/security/2015/dsa-3193"
},
{
"name": "http://packetstormsecurity.com/files/130730/tcpdump-Denial-Of-Service-Code-Execution.html",
"refsource": "MISC",
"tags": [],
"url": "http://packetstormsecurity.com/files/130730/tcpdump-Denial-Of-Service-Code-Execution.html"
},
{
"name": "1031937",
"refsource": "SECTRACK",
"tags": [],
"url": "http://www.securitytracker.com/id/1031937"
},
{
"name": "openSUSE-SU-2015:0616",
"refsource": "SUSE",
"tags": [],
"url": "http://lists.opensuse.org/opensuse-updates/2015-03/msg00084.html"
},
{
"name": "MDVSA-2015:182",
"refsource": "MANDRIVA",
"tags": [],
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2015:182"
},
{
"name": "http://advisories.mageia.org/MGASA-2015-0114.html",
"refsource": "CONFIRM",
"tags": [],
"url": "http://advisories.mageia.org/MGASA-2015-0114.html"
},
{
"name": "MDVSA-2015:125",
"refsource": "MANDRIVA",
"tags": [],
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2015:125"
},
{
"name": "FEDORA-2015-4939",
"refsource": "FEDORA",
"tags": [],
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-March/153834.html"
},
{
"name": "FEDORA-2015-4804",
"refsource": "FEDORA",
"tags": [],
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-March/153999.html"
},
{
"name": "http://www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html",
"refsource": "CONFIRM",
"tags": [],
"url": "http://www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html"
},
{
"name": "GLSA-201510-04",
"refsource": "GENTOO",
"tags": [],
"url": "https://security.gentoo.org/glsa/201510-04"
},
{
"name": "73017",
"refsource": "BID",
"tags": [],
"url": "http://www.securityfocus.com/bid/73017"
},
{
"name": "USN-2580-1",
"refsource": "UBUNTU",
"tags": [],
"url": "http://www.ubuntu.com/usn/USN-2580-1"
},
{
"name": "RHSA-2017:1871",
"refsource": "REDHAT",
"tags": [],
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"name": "20150309 tcpdump 4.7.2 remote crashes",
"refsource": "BUGTRAQ",
"tags": [],
"url": "http://www.securityfocus.com/archive/1/534829/100/0/threaded"
}
]
}
},
"impact": {
"baseMetricV2": {
"cvssV2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "MEDIUM",
"userInteractionRequired": false
}
},
"lastModifiedDate": "2018-10-09T19:56Z",
"publishedDate": "2015-03-24T17:59Z"
}
}
}
OPENSUSE-SU-2024:10396-1
Vulnerability from csaf_opensuse - Published: 2024-06-15 00:00 - Updated: 2024-06-15 00:00Summary
tcpdump-4.7.4-3.4 on GA media
Severity
Moderate
Notes
Title of the patch: tcpdump-4.7.4-3.4 on GA media
Description of the patch: These are all security issues fixed in the tcpdump-4.7.4-3.4 package on the GA media of openSUSE Tumbleweed.
Patchnames: openSUSE-Tumbleweed-2024-10396
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:tcpdump-4.7.4-3.4.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:tcpdump-4.7.4-3.4.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:tcpdump-4.7.4-3.4.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:tcpdump-4.7.4-3.4.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:tcpdump-4.7.4-3.4.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:tcpdump-4.7.4-3.4.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:tcpdump-4.7.4-3.4.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:tcpdump-4.7.4-3.4.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:tcpdump-4.7.4-3.4.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:tcpdump-4.7.4-3.4.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:tcpdump-4.7.4-3.4.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:tcpdump-4.7.4-3.4.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:tcpdump-4.7.4-3.4.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:tcpdump-4.7.4-3.4.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:tcpdump-4.7.4-3.4.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:tcpdump-4.7.4-3.4.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:tcpdump-4.7.4-3.4.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:tcpdump-4.7.4-3.4.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:tcpdump-4.7.4-3.4.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:tcpdump-4.7.4-3.4.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:tcpdump-4.7.4-3.4.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:tcpdump-4.7.4-3.4.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:tcpdump-4.7.4-3.4.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:tcpdump-4.7.4-3.4.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:tcpdump-4.7.4-3.4.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:tcpdump-4.7.4-3.4.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:tcpdump-4.7.4-3.4.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:tcpdump-4.7.4-3.4.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.5 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:tcpdump-4.7.4-3.4.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:tcpdump-4.7.4-3.4.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:tcpdump-4.7.4-3.4.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:tcpdump-4.7.4-3.4.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
33 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "tcpdump-4.7.4-3.4 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the tcpdump-4.7.4-3.4 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2024-10396",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_10396-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-8767 page",
"url": "https://www.suse.com/security/cve/CVE-2014-8767/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-8768 page",
"url": "https://www.suse.com/security/cve/CVE-2014-8768/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-8769 page",
"url": "https://www.suse.com/security/cve/CVE-2014-8769/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0261 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0261/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-2153 page",
"url": "https://www.suse.com/security/cve/CVE-2015-2153/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-2154 page",
"url": "https://www.suse.com/security/cve/CVE-2015-2154/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-2155 page",
"url": "https://www.suse.com/security/cve/CVE-2015-2155/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-3138 page",
"url": "https://www.suse.com/security/cve/CVE-2015-3138/"
}
],
"title": "tcpdump-4.7.4-3.4 on GA media",
"tracking": {
"current_release_date": "2024-06-15T00:00:00Z",
"generator": {
"date": "2024-06-15T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2024:10396-1",
"initial_release_date": "2024-06-15T00:00:00Z",
"revision_history": [
{
"date": "2024-06-15T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "tcpdump-4.7.4-3.4.aarch64",
"product": {
"name": "tcpdump-4.7.4-3.4.aarch64",
"product_id": "tcpdump-4.7.4-3.4.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "tcpdump-4.7.4-3.4.ppc64le",
"product": {
"name": "tcpdump-4.7.4-3.4.ppc64le",
"product_id": "tcpdump-4.7.4-3.4.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "tcpdump-4.7.4-3.4.s390x",
"product": {
"name": "tcpdump-4.7.4-3.4.s390x",
"product_id": "tcpdump-4.7.4-3.4.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "tcpdump-4.7.4-3.4.x86_64",
"product": {
"name": "tcpdump-4.7.4-3.4.x86_64",
"product_id": "tcpdump-4.7.4-3.4.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-4.7.4-3.4.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:tcpdump-4.7.4-3.4.aarch64"
},
"product_reference": "tcpdump-4.7.4-3.4.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-4.7.4-3.4.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:tcpdump-4.7.4-3.4.ppc64le"
},
"product_reference": "tcpdump-4.7.4-3.4.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-4.7.4-3.4.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:tcpdump-4.7.4-3.4.s390x"
},
"product_reference": "tcpdump-4.7.4-3.4.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-4.7.4-3.4.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:tcpdump-4.7.4-3.4.x86_64"
},
"product_reference": "tcpdump-4.7.4-3.4.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2014-8767",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-8767"
}
],
"notes": [
{
"category": "general",
"text": "Integer underflow in the olsr_print function in tcpdump 3.9.6 through 4.6.2, when in verbose mode, allows remote attackers to cause a denial of service (crash) via a crafted length value in an OLSR frame.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:tcpdump-4.7.4-3.4.aarch64",
"openSUSE Tumbleweed:tcpdump-4.7.4-3.4.ppc64le",
"openSUSE Tumbleweed:tcpdump-4.7.4-3.4.s390x",
"openSUSE Tumbleweed:tcpdump-4.7.4-3.4.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-8767",
"url": "https://www.suse.com/security/cve/CVE-2014-8767"
},
{
"category": "external",
"summary": "SUSE Bug 905870 for CVE-2014-8767",
"url": "https://bugzilla.suse.com/905870"
},
{
"category": "external",
"summary": "SUSE Bug 905871 for CVE-2014-8767",
"url": "https://bugzilla.suse.com/905871"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:tcpdump-4.7.4-3.4.aarch64",
"openSUSE Tumbleweed:tcpdump-4.7.4-3.4.ppc64le",
"openSUSE Tumbleweed:tcpdump-4.7.4-3.4.s390x",
"openSUSE Tumbleweed:tcpdump-4.7.4-3.4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-8767"
},
{
"cve": "CVE-2014-8768",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-8768"
}
],
"notes": [
{
"category": "general",
"text": "Multiple Integer underflows in the geonet_print function in tcpdump 4.5.0 through 4.6.2, when in verbose mode, allow remote attackers to cause a denial of service (segmentation fault and crash) via a crafted length value in a Geonet frame.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:tcpdump-4.7.4-3.4.aarch64",
"openSUSE Tumbleweed:tcpdump-4.7.4-3.4.ppc64le",
"openSUSE Tumbleweed:tcpdump-4.7.4-3.4.s390x",
"openSUSE Tumbleweed:tcpdump-4.7.4-3.4.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-8768",
"url": "https://www.suse.com/security/cve/CVE-2014-8768"
},
{
"category": "external",
"summary": "SUSE Bug 905871 for CVE-2014-8768",
"url": "https://bugzilla.suse.com/905871"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:tcpdump-4.7.4-3.4.aarch64",
"openSUSE Tumbleweed:tcpdump-4.7.4-3.4.ppc64le",
"openSUSE Tumbleweed:tcpdump-4.7.4-3.4.s390x",
"openSUSE Tumbleweed:tcpdump-4.7.4-3.4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-8768"
},
{
"cve": "CVE-2014-8769",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-8769"
}
],
"notes": [
{
"category": "general",
"text": "tcpdump 3.8 through 4.6.2 might allow remote attackers to obtain sensitive information from memory or cause a denial of service (packet loss or segmentation fault) via a crafted Ad hoc On-Demand Distance Vector (AODV) packet, which triggers an out-of-bounds memory access.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:tcpdump-4.7.4-3.4.aarch64",
"openSUSE Tumbleweed:tcpdump-4.7.4-3.4.ppc64le",
"openSUSE Tumbleweed:tcpdump-4.7.4-3.4.s390x",
"openSUSE Tumbleweed:tcpdump-4.7.4-3.4.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-8769",
"url": "https://www.suse.com/security/cve/CVE-2014-8769"
},
{
"category": "external",
"summary": "SUSE Bug 905871 for CVE-2014-8769",
"url": "https://bugzilla.suse.com/905871"
},
{
"category": "external",
"summary": "SUSE Bug 905872 for CVE-2014-8769",
"url": "https://bugzilla.suse.com/905872"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:tcpdump-4.7.4-3.4.aarch64",
"openSUSE Tumbleweed:tcpdump-4.7.4-3.4.ppc64le",
"openSUSE Tumbleweed:tcpdump-4.7.4-3.4.s390x",
"openSUSE Tumbleweed:tcpdump-4.7.4-3.4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-8769"
},
{
"cve": "CVE-2015-0261",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0261"
}
],
"notes": [
{
"category": "general",
"text": "Integer signedness error in the mobility_opt_print function in the IPv6 mobility printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (out-of-bounds read and crash) or possibly execute arbitrary code via a negative length value.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:tcpdump-4.7.4-3.4.aarch64",
"openSUSE Tumbleweed:tcpdump-4.7.4-3.4.ppc64le",
"openSUSE Tumbleweed:tcpdump-4.7.4-3.4.s390x",
"openSUSE Tumbleweed:tcpdump-4.7.4-3.4.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0261",
"url": "https://www.suse.com/security/cve/CVE-2015-0261"
},
{
"category": "external",
"summary": "SUSE Bug 922220 for CVE-2015-0261",
"url": "https://bugzilla.suse.com/922220"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:tcpdump-4.7.4-3.4.aarch64",
"openSUSE Tumbleweed:tcpdump-4.7.4-3.4.ppc64le",
"openSUSE Tumbleweed:tcpdump-4.7.4-3.4.s390x",
"openSUSE Tumbleweed:tcpdump-4.7.4-3.4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2015-0261"
},
{
"cve": "CVE-2015-2153",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-2153"
}
],
"notes": [
{
"category": "general",
"text": "The rpki_rtr_pdu_print function in print-rpki-rtr.c in the TCP printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (out-of-bounds read or write and crash) via a crafted header length in an RPKI-RTR Protocol Data Unit (PDU).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:tcpdump-4.7.4-3.4.aarch64",
"openSUSE Tumbleweed:tcpdump-4.7.4-3.4.ppc64le",
"openSUSE Tumbleweed:tcpdump-4.7.4-3.4.s390x",
"openSUSE Tumbleweed:tcpdump-4.7.4-3.4.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-2153",
"url": "https://www.suse.com/security/cve/CVE-2015-2153"
},
{
"category": "external",
"summary": "SUSE Bug 922221 for CVE-2015-2153",
"url": "https://bugzilla.suse.com/922221"
},
{
"category": "external",
"summary": "SUSE Bug 922222 for CVE-2015-2153",
"url": "https://bugzilla.suse.com/922222"
},
{
"category": "external",
"summary": "SUSE Bug 922223 for CVE-2015-2153",
"url": "https://bugzilla.suse.com/922223"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:tcpdump-4.7.4-3.4.aarch64",
"openSUSE Tumbleweed:tcpdump-4.7.4-3.4.ppc64le",
"openSUSE Tumbleweed:tcpdump-4.7.4-3.4.s390x",
"openSUSE Tumbleweed:tcpdump-4.7.4-3.4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2015-2153"
},
{
"cve": "CVE-2015-2154",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-2154"
}
],
"notes": [
{
"category": "general",
"text": "The osi_print_cksum function in print-isoclns.c in the ethernet printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a crafted (1) length, (2) offset, or (3) base pointer checksum value.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:tcpdump-4.7.4-3.4.aarch64",
"openSUSE Tumbleweed:tcpdump-4.7.4-3.4.ppc64le",
"openSUSE Tumbleweed:tcpdump-4.7.4-3.4.s390x",
"openSUSE Tumbleweed:tcpdump-4.7.4-3.4.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-2154",
"url": "https://www.suse.com/security/cve/CVE-2015-2154"
},
{
"category": "external",
"summary": "SUSE Bug 922222 for CVE-2015-2154",
"url": "https://bugzilla.suse.com/922222"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:tcpdump-4.7.4-3.4.aarch64",
"openSUSE Tumbleweed:tcpdump-4.7.4-3.4.ppc64le",
"openSUSE Tumbleweed:tcpdump-4.7.4-3.4.s390x",
"openSUSE Tumbleweed:tcpdump-4.7.4-3.4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2015-2154"
},
{
"cve": "CVE-2015-2155",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-2155"
}
],
"notes": [
{
"category": "general",
"text": "The force printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unspecified vectors.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:tcpdump-4.7.4-3.4.aarch64",
"openSUSE Tumbleweed:tcpdump-4.7.4-3.4.ppc64le",
"openSUSE Tumbleweed:tcpdump-4.7.4-3.4.s390x",
"openSUSE Tumbleweed:tcpdump-4.7.4-3.4.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-2155",
"url": "https://www.suse.com/security/cve/CVE-2015-2155"
},
{
"category": "external",
"summary": "SUSE Bug 922220 for CVE-2015-2155",
"url": "https://bugzilla.suse.com/922220"
},
{
"category": "external",
"summary": "SUSE Bug 922221 for CVE-2015-2155",
"url": "https://bugzilla.suse.com/922221"
},
{
"category": "external",
"summary": "SUSE Bug 922222 for CVE-2015-2155",
"url": "https://bugzilla.suse.com/922222"
},
{
"category": "external",
"summary": "SUSE Bug 922223 for CVE-2015-2155",
"url": "https://bugzilla.suse.com/922223"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:tcpdump-4.7.4-3.4.aarch64",
"openSUSE Tumbleweed:tcpdump-4.7.4-3.4.ppc64le",
"openSUSE Tumbleweed:tcpdump-4.7.4-3.4.s390x",
"openSUSE Tumbleweed:tcpdump-4.7.4-3.4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2015-2155"
},
{
"cve": "CVE-2015-3138",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-3138"
}
],
"notes": [
{
"category": "general",
"text": "print-wb.c in tcpdump before 4.7.4 allows remote attackers to cause a denial of service (segmentation fault and process crash).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:tcpdump-4.7.4-3.4.aarch64",
"openSUSE Tumbleweed:tcpdump-4.7.4-3.4.ppc64le",
"openSUSE Tumbleweed:tcpdump-4.7.4-3.4.s390x",
"openSUSE Tumbleweed:tcpdump-4.7.4-3.4.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-3138",
"url": "https://www.suse.com/security/cve/CVE-2015-3138"
},
{
"category": "external",
"summary": "SUSE Bug 927637 for CVE-2015-3138",
"url": "https://bugzilla.suse.com/927637"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:tcpdump-4.7.4-3.4.aarch64",
"openSUSE Tumbleweed:tcpdump-4.7.4-3.4.ppc64le",
"openSUSE Tumbleweed:tcpdump-4.7.4-3.4.s390x",
"openSUSE Tumbleweed:tcpdump-4.7.4-3.4.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:tcpdump-4.7.4-3.4.aarch64",
"openSUSE Tumbleweed:tcpdump-4.7.4-3.4.ppc64le",
"openSUSE Tumbleweed:tcpdump-4.7.4-3.4.s390x",
"openSUSE Tumbleweed:tcpdump-4.7.4-3.4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2015-3138"
}
]
}
RHSA-2017:1871
Vulnerability from csaf_redhat - Published: 2017-08-01 12:00 - Updated: 2026-05-13 01:17Summary
Red Hat Security Advisory: tcpdump security, bug fix, and enhancement update
Severity
Moderate
Notes
Topic: An update for tcpdump is now available for Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: The tcpdump packages contain the tcpdump utility for monitoring network traffic. The tcpdump utility can capture and display the packet headers on a particular network interface or on all interfaces.
The following packages have been upgraded to a later upstream version: tcpdump (4.9.0). (BZ#1422473)
Security Fix(es):
* Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop. (CVE-2015-0261, CVE-2015-2153, CVE-2015-2154, CVE-2015-2155, CVE-2016-7922, CVE-2016-7923, CVE-2016-7924, CVE-2016-7925, CVE-2016-7926, CVE-2016-7927, CVE-2016-7928, CVE-2016-7929, CVE-2016-7930, CVE-2016-7931, CVE-2016-7932, CVE-2016-7933, CVE-2016-7934, CVE-2016-7935, CVE-2016-7936, CVE-2016-7937, CVE-2016-7938, CVE-2016-7939, CVE-2016-7940, CVE-2016-7973, CVE-2016-7974, CVE-2016-7975, CVE-2016-7983, CVE-2016-7984, CVE-2016-7985, CVE-2016-7986, CVE-2016-7992, CVE-2016-7993, CVE-2016-8574, CVE-2016-8575, CVE-2017-5202, CVE-2017-5203, CVE-2017-5204, CVE-2017-5205, CVE-2017-5341, CVE-2017-5342, CVE-2017-5482, CVE-2017-5483, CVE-2017-5484, CVE-2017-5485, CVE-2017-5486)
Red Hat would like to thank the Tcpdump project for reporting CVE-2016-7922, CVE-2016-7923, CVE-2016-7924, CVE-2016-7925, CVE-2016-7926, CVE-2016-7927, CVE-2016-7928, CVE-2016-7929, CVE-2016-7930, CVE-2016-7931, CVE-2016-7932, CVE-2016-7933, CVE-2016-7934, CVE-2016-7935, CVE-2016-7936, CVE-2016-7937, CVE-2016-7938, CVE-2016-7939, CVE-2016-7940, CVE-2016-7973, CVE-2016-7974, CVE-2016-7975, CVE-2016-7983, CVE-2016-7984, CVE-2016-7985, CVE-2016-7986, CVE-2016-7992, CVE-2016-7993, CVE-2016-8574, CVE-2016-8575, CVE-2017-5202, CVE-2017-5203, CVE-2017-5204, CVE-2017-5205, CVE-2017-5341, CVE-2017-5342, CVE-2017-5482, CVE-2017-5483, CVE-2017-5484, CVE-2017-5485, and CVE-2017-5486.
Additional Changes:
For detailed information on changes in this release, see the Red Hat Enterprise Linux 7.4 Release Notes linked from the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
Integer signedness error in the mobility_opt_print function in the IPv6 mobility printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (out-of-bounds read and crash) or possibly execute arbitrary code via a negative length value.
6.8 ()
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
The rpki_rtr_pdu_print function in print-rpki-rtr.c in the TCP printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (out-of-bounds read or write and crash) via a crafted header length in an RPKI-RTR Protocol Data Unit (PDU).
6.8 ()
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
The osi_print_cksum function in print-isoclns.c in the ethernet printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a crafted (1) length, (2) offset, or (3) base pointer checksum value.
6.8 ()
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Low
The force printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unspecified vectors.
6.8 ()
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
References
153 references
Acknowledgments
the Tcpdump project
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for tcpdump is now available for Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The tcpdump packages contain the tcpdump utility for monitoring network traffic. The tcpdump utility can capture and display the packet headers on a particular network interface or on all interfaces.\n\nThe following packages have been upgraded to a later upstream version: tcpdump (4.9.0). (BZ#1422473)\n\nSecurity Fix(es):\n\n* Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop. (CVE-2015-0261, CVE-2015-2153, CVE-2015-2154, CVE-2015-2155, CVE-2016-7922, CVE-2016-7923, CVE-2016-7924, CVE-2016-7925, CVE-2016-7926, CVE-2016-7927, CVE-2016-7928, CVE-2016-7929, CVE-2016-7930, CVE-2016-7931, CVE-2016-7932, CVE-2016-7933, CVE-2016-7934, CVE-2016-7935, CVE-2016-7936, CVE-2016-7937, CVE-2016-7938, CVE-2016-7939, CVE-2016-7940, CVE-2016-7973, CVE-2016-7974, CVE-2016-7975, CVE-2016-7983, CVE-2016-7984, CVE-2016-7985, CVE-2016-7986, CVE-2016-7992, CVE-2016-7993, CVE-2016-8574, CVE-2016-8575, CVE-2017-5202, CVE-2017-5203, CVE-2017-5204, CVE-2017-5205, CVE-2017-5341, CVE-2017-5342, CVE-2017-5482, CVE-2017-5483, CVE-2017-5484, CVE-2017-5485, CVE-2017-5486)\n\nRed Hat would like to thank the Tcpdump project for reporting CVE-2016-7922, CVE-2016-7923, CVE-2016-7924, CVE-2016-7925, CVE-2016-7926, CVE-2016-7927, CVE-2016-7928, CVE-2016-7929, CVE-2016-7930, CVE-2016-7931, CVE-2016-7932, CVE-2016-7933, CVE-2016-7934, CVE-2016-7935, CVE-2016-7936, CVE-2016-7937, CVE-2016-7938, CVE-2016-7939, CVE-2016-7940, CVE-2016-7973, CVE-2016-7974, CVE-2016-7975, CVE-2016-7983, CVE-2016-7984, CVE-2016-7985, CVE-2016-7986, CVE-2016-7992, CVE-2016-7993, CVE-2016-8574, CVE-2016-8575, CVE-2017-5202, CVE-2017-5203, CVE-2017-5204, CVE-2017-5205, CVE-2017-5341, CVE-2017-5342, CVE-2017-5482, CVE-2017-5483, CVE-2017-5484, CVE-2017-5485, and CVE-2017-5486.\n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the Red Hat Enterprise Linux 7.4 Release Notes linked from the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2017:1871",
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7/html/7.4_Release_Notes/index.html",
"url": "https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7/html/7.4_Release_Notes/index.html"
},
{
"category": "external",
"summary": "1201792",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1201792"
},
{
"category": "external",
"summary": "1201795",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1201795"
},
{
"category": "external",
"summary": "1201797",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1201797"
},
{
"category": "external",
"summary": "1201798",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1201798"
},
{
"category": "external",
"summary": "1292056",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1292056"
},
{
"category": "external",
"summary": "1296230",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1296230"
},
{
"category": "external",
"summary": "1297812",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1297812"
},
{
"category": "external",
"summary": "1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "1441597",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1441597"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2017/rhsa-2017_1871.json"
}
],
"title": "Red Hat Security Advisory: tcpdump security, bug fix, and enhancement update",
"tracking": {
"current_release_date": "2026-05-13T01:17:58+00:00",
"generator": {
"date": "2026-05-13T01:17:58+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.7.9"
}
},
"id": "RHSA-2017:1871",
"initial_release_date": "2017-08-01T12:00:24+00:00",
"revision_history": [
{
"date": "2017-08-01T12:00:24+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2017-08-01T12:00:24+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-05-13T01:17:58+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Client (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::client"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux ComputeNode (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::computenode"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::workstation"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "tcpdump-14:4.9.0-5.el7.x86_64",
"product": {
"name": "tcpdump-14:4.9.0-5.el7.x86_64",
"product_id": "tcpdump-14:4.9.0-5.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tcpdump@4.9.0-5.el7?arch=x86_64\u0026epoch=14"
}
}
},
{
"category": "product_version",
"name": "tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"product": {
"name": "tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"product_id": "tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tcpdump-debuginfo@4.9.0-5.el7?arch=x86_64\u0026epoch=14"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "tcpdump-14:4.9.0-5.el7.src",
"product": {
"name": "tcpdump-14:4.9.0-5.el7.src",
"product_id": "tcpdump-14:4.9.0-5.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tcpdump@4.9.0-5.el7?arch=src\u0026epoch=14"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "tcpdump-14:4.9.0-5.el7.aarch64",
"product": {
"name": "tcpdump-14:4.9.0-5.el7.aarch64",
"product_id": "tcpdump-14:4.9.0-5.el7.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tcpdump@4.9.0-5.el7?arch=aarch64\u0026epoch=14"
}
}
},
{
"category": "product_version",
"name": "tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"product": {
"name": "tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"product_id": "tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tcpdump-debuginfo@4.9.0-5.el7?arch=aarch64\u0026epoch=14"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "tcpdump-14:4.9.0-5.el7.ppc64le",
"product": {
"name": "tcpdump-14:4.9.0-5.el7.ppc64le",
"product_id": "tcpdump-14:4.9.0-5.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tcpdump@4.9.0-5.el7?arch=ppc64le\u0026epoch=14"
}
}
},
{
"category": "product_version",
"name": "tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"product": {
"name": "tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"product_id": "tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tcpdump-debuginfo@4.9.0-5.el7?arch=ppc64le\u0026epoch=14"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "tcpdump-14:4.9.0-5.el7.ppc64",
"product": {
"name": "tcpdump-14:4.9.0-5.el7.ppc64",
"product_id": "tcpdump-14:4.9.0-5.el7.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tcpdump@4.9.0-5.el7?arch=ppc64\u0026epoch=14"
}
}
},
{
"category": "product_version",
"name": "tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"product": {
"name": "tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"product_id": "tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tcpdump-debuginfo@4.9.0-5.el7?arch=ppc64\u0026epoch=14"
}
}
}
],
"category": "architecture",
"name": "ppc64"
},
{
"branches": [
{
"category": "product_version",
"name": "tcpdump-14:4.9.0-5.el7.s390x",
"product": {
"name": "tcpdump-14:4.9.0-5.el7.s390x",
"product_id": "tcpdump-14:4.9.0-5.el7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tcpdump@4.9.0-5.el7?arch=s390x\u0026epoch=14"
}
}
},
{
"category": "product_version",
"name": "tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"product": {
"name": "tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"product_id": "tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tcpdump-debuginfo@4.9.0-5.el7?arch=s390x\u0026epoch=14"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-14:4.9.0-5.el7.aarch64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client:tcpdump-14:4.9.0-5.el7.aarch64"
},
"product_reference": "tcpdump-14:4.9.0-5.el7.aarch64",
"relates_to_product_reference": "7Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-14:4.9.0-5.el7.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client:tcpdump-14:4.9.0-5.el7.ppc64"
},
"product_reference": "tcpdump-14:4.9.0-5.el7.ppc64",
"relates_to_product_reference": "7Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-14:4.9.0-5.el7.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client:tcpdump-14:4.9.0-5.el7.ppc64le"
},
"product_reference": "tcpdump-14:4.9.0-5.el7.ppc64le",
"relates_to_product_reference": "7Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-14:4.9.0-5.el7.s390x as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client:tcpdump-14:4.9.0-5.el7.s390x"
},
"product_reference": "tcpdump-14:4.9.0-5.el7.s390x",
"relates_to_product_reference": "7Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-14:4.9.0-5.el7.src as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client:tcpdump-14:4.9.0-5.el7.src"
},
"product_reference": "tcpdump-14:4.9.0-5.el7.src",
"relates_to_product_reference": "7Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-14:4.9.0-5.el7.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client:tcpdump-14:4.9.0-5.el7.x86_64"
},
"product_reference": "tcpdump-14:4.9.0-5.el7.x86_64",
"relates_to_product_reference": "7Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64"
},
"product_reference": "tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"relates_to_product_reference": "7Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64"
},
"product_reference": "tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"relates_to_product_reference": "7Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le"
},
"product_reference": "tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"relates_to_product_reference": "7Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-debuginfo-14:4.9.0-5.el7.s390x as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x"
},
"product_reference": "tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"relates_to_product_reference": "7Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
},
"product_reference": "tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"relates_to_product_reference": "7Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-14:4.9.0-5.el7.aarch64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64"
},
"product_reference": "tcpdump-14:4.9.0-5.el7.aarch64",
"relates_to_product_reference": "7ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-14:4.9.0-5.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64"
},
"product_reference": "tcpdump-14:4.9.0-5.el7.ppc64",
"relates_to_product_reference": "7ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-14:4.9.0-5.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le"
},
"product_reference": "tcpdump-14:4.9.0-5.el7.ppc64le",
"relates_to_product_reference": "7ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-14:4.9.0-5.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x"
},
"product_reference": "tcpdump-14:4.9.0-5.el7.s390x",
"relates_to_product_reference": "7ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-14:4.9.0-5.el7.src as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode:tcpdump-14:4.9.0-5.el7.src"
},
"product_reference": "tcpdump-14:4.9.0-5.el7.src",
"relates_to_product_reference": "7ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-14:4.9.0-5.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64"
},
"product_reference": "tcpdump-14:4.9.0-5.el7.x86_64",
"relates_to_product_reference": "7ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64"
},
"product_reference": "tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"relates_to_product_reference": "7ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64"
},
"product_reference": "tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"relates_to_product_reference": "7ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le"
},
"product_reference": "tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"relates_to_product_reference": "7ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-debuginfo-14:4.9.0-5.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x"
},
"product_reference": "tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"relates_to_product_reference": "7ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
},
"product_reference": "tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"relates_to_product_reference": "7ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-14:4.9.0-5.el7.aarch64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server:tcpdump-14:4.9.0-5.el7.aarch64"
},
"product_reference": "tcpdump-14:4.9.0-5.el7.aarch64",
"relates_to_product_reference": "7Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-14:4.9.0-5.el7.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server:tcpdump-14:4.9.0-5.el7.ppc64"
},
"product_reference": "tcpdump-14:4.9.0-5.el7.ppc64",
"relates_to_product_reference": "7Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-14:4.9.0-5.el7.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server:tcpdump-14:4.9.0-5.el7.ppc64le"
},
"product_reference": "tcpdump-14:4.9.0-5.el7.ppc64le",
"relates_to_product_reference": "7Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-14:4.9.0-5.el7.s390x as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server:tcpdump-14:4.9.0-5.el7.s390x"
},
"product_reference": "tcpdump-14:4.9.0-5.el7.s390x",
"relates_to_product_reference": "7Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-14:4.9.0-5.el7.src as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server:tcpdump-14:4.9.0-5.el7.src"
},
"product_reference": "tcpdump-14:4.9.0-5.el7.src",
"relates_to_product_reference": "7Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-14:4.9.0-5.el7.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server:tcpdump-14:4.9.0-5.el7.x86_64"
},
"product_reference": "tcpdump-14:4.9.0-5.el7.x86_64",
"relates_to_product_reference": "7Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64"
},
"product_reference": "tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"relates_to_product_reference": "7Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64"
},
"product_reference": "tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"relates_to_product_reference": "7Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le"
},
"product_reference": "tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"relates_to_product_reference": "7Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-debuginfo-14:4.9.0-5.el7.s390x as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x"
},
"product_reference": "tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"relates_to_product_reference": "7Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
},
"product_reference": "tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"relates_to_product_reference": "7Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-14:4.9.0-5.el7.aarch64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation:tcpdump-14:4.9.0-5.el7.aarch64"
},
"product_reference": "tcpdump-14:4.9.0-5.el7.aarch64",
"relates_to_product_reference": "7Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-14:4.9.0-5.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation:tcpdump-14:4.9.0-5.el7.ppc64"
},
"product_reference": "tcpdump-14:4.9.0-5.el7.ppc64",
"relates_to_product_reference": "7Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-14:4.9.0-5.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le"
},
"product_reference": "tcpdump-14:4.9.0-5.el7.ppc64le",
"relates_to_product_reference": "7Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-14:4.9.0-5.el7.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation:tcpdump-14:4.9.0-5.el7.s390x"
},
"product_reference": "tcpdump-14:4.9.0-5.el7.s390x",
"relates_to_product_reference": "7Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-14:4.9.0-5.el7.src as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation:tcpdump-14:4.9.0-5.el7.src"
},
"product_reference": "tcpdump-14:4.9.0-5.el7.src",
"relates_to_product_reference": "7Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-14:4.9.0-5.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation:tcpdump-14:4.9.0-5.el7.x86_64"
},
"product_reference": "tcpdump-14:4.9.0-5.el7.x86_64",
"relates_to_product_reference": "7Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64"
},
"product_reference": "tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"relates_to_product_reference": "7Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64"
},
"product_reference": "tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"relates_to_product_reference": "7Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le"
},
"product_reference": "tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"relates_to_product_reference": "7Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-debuginfo-14:4.9.0-5.el7.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x"
},
"product_reference": "tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"relates_to_product_reference": "7Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
},
"product_reference": "tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"relates_to_product_reference": "7Workstation"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2015-0261",
"discovery_date": "2015-03-10T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1201792"
}
],
"notes": [
{
"category": "description",
"text": "Integer signedness error in the mobility_opt_print function in the IPv6 mobility printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (out-of-bounds read and crash) or possibly execute arbitrary code via a negative length value.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: IPv6 mobility printer mobility_opt_print() typecastimg/signedness error",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2015-0261"
},
{
"category": "external",
"summary": "RHBZ#1201792",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1201792"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2015-0261",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-0261"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0261",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0261"
}
],
"release_date": "2015-03-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: IPv6 mobility printer mobility_opt_print() typecastimg/signedness error"
},
{
"cve": "CVE-2015-2153",
"discovery_date": "2015-03-10T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1201795"
}
],
"notes": [
{
"category": "description",
"text": "The rpki_rtr_pdu_print function in print-rpki-rtr.c in the TCP printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (out-of-bounds read or write and crash) via a crafted header length in an RPKI-RTR Protocol Data Unit (PDU).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: tcp printer rpki_rtr_pdu_print() missing length check",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2015-2153"
},
{
"category": "external",
"summary": "RHBZ#1201795",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1201795"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2015-2153",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-2153"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-2153",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2015-2153"
}
],
"release_date": "2015-03-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: tcp printer rpki_rtr_pdu_print() missing length check"
},
{
"cve": "CVE-2015-2154",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2015-03-10T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1201797"
}
],
"notes": [
{
"category": "description",
"text": "The osi_print_cksum function in print-isoclns.c in the ethernet printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a crafted (1) length, (2) offset, or (3) base pointer checksum value.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: ethernet printer osi_print_cksum() missing sanity checks out-of-bounds read",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2015-2154"
},
{
"category": "external",
"summary": "RHBZ#1201797",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1201797"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2015-2154",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-2154"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-2154",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2015-2154"
}
],
"release_date": "2015-03-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "tcpdump: ethernet printer osi_print_cksum() missing sanity checks out-of-bounds read"
},
{
"cve": "CVE-2015-2155",
"discovery_date": "2015-03-10T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1201798"
}
],
"notes": [
{
"category": "description",
"text": "The force printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unspecified vectors.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: force printer vulnerability",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2015-2155"
},
{
"category": "external",
"summary": "RHBZ#1201798",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1201798"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2015-2155",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-2155"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-2155",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2015-2155"
}
],
"release_date": "2015-03-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: force printer vulnerability"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2016-7922",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-7922"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-7922",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7922"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-7922",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-7922"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2016-7923",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-7923"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-7923",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7923"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-7923",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-7923"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2016-7924",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-7924"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-7924",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7924"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-7924",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-7924"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2016-7925",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-7925"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-7925",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7925"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-7925",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-7925"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2016-7926",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-7926"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-7926",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7926"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-7926",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-7926"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2016-7927",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-7927"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-7927",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7927"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-7927",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-7927"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2016-7928",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-7928"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-7928",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7928"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-7928",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-7928"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2016-7929",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-7929"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-7929",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7929"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-7929",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-7929"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2016-7930",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-7930"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-7930",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7930"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-7930",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-7930"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2016-7931",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-7931"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-7931",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7931"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-7931",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-7931"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2016-7932",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-7932"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-7932",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7932"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-7932",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-7932"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2016-7933",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-7933"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-7933",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7933"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-7933",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-7933"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2016-7934",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-7934"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-7934",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7934"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-7934",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-7934"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2016-7935",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-7935"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-7935",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7935"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-7935",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-7935"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2016-7936",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-7936"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-7936",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7936"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-7936",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-7936"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2016-7937",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-7937"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-7937",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7937"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-7937",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-7937"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2016-7938",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-7938"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-7938",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7938"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-7938",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-7938"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2016-7939",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-7939"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-7939",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7939"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-7939",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-7939"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2016-7940",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-7940"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-7940",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7940"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-7940",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-7940"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2016-7973",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-7973"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-7973",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7973"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-7973",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-7973"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2016-7974",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-7974"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-7974",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7974"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-7974",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-7974"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2016-7975",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-7975"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-7975",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7975"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-7975",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-7975"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2016-7983",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-7983"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-7983",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7983"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-7983",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-7983"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2016-7984",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-7984"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-7984",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7984"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-7984",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-7984"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2016-7985",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-7985"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-7985",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7985"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-7985",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-7985"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2016-7986",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-7986"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-7986",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7986"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-7986",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-7986"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2016-7992",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-7992"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-7992",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7992"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-7992",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-7992"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2016-7993",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-7993"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-7993",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7993"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-7993",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-7993"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2016-8574",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-8574"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-8574",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-8574"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-8574",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-8574"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2016-8575",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-8575"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-8575",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-8575"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-8575",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-8575"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2017-5202",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-5202"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-5202",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-5202"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-5202",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-5202"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2017-5203",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-5203"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-5203",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-5203"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-5203",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-5203"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2017-5204",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-5204"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-5204",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-5204"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-5204",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-5204"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2017-5205",
"cwe": {
"id": "CWE-131",
"name": "Incorrect Calculation of Buffer Size"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-5205"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-5205",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-5205"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-5205",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-5205"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2017-5341",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-5341"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-5341",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-5341"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-5341",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-5341"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2017-5342",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-5342"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-5342",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-5342"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-5342",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-5342"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2017-5482",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-5482"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-5482",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-5482"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-5482",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-5482"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2017-5483",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-5483"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-5483",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-5483"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-5483",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-5483"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2017-5484",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-5484"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-5484",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-5484"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-5484",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-5484"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2017-5485",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-5485"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-5485",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-5485"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-5485",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-5485"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2017-5486",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-5486"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-5486",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-5486"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-5486",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-5486"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
}
]
}
RHSA-2017_1871
Vulnerability from csaf_redhat - Published: 2017-08-01 12:00 - Updated: 2024-11-22 10:45Summary
Red Hat Security Advisory: tcpdump security, bug fix, and enhancement update
Severity
Moderate
Notes
Topic: An update for tcpdump is now available for Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: The tcpdump packages contain the tcpdump utility for monitoring network traffic. The tcpdump utility can capture and display the packet headers on a particular network interface or on all interfaces.
The following packages have been upgraded to a later upstream version: tcpdump (4.9.0). (BZ#1422473)
Security Fix(es):
* Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop. (CVE-2015-0261, CVE-2015-2153, CVE-2015-2154, CVE-2015-2155, CVE-2016-7922, CVE-2016-7923, CVE-2016-7924, CVE-2016-7925, CVE-2016-7926, CVE-2016-7927, CVE-2016-7928, CVE-2016-7929, CVE-2016-7930, CVE-2016-7931, CVE-2016-7932, CVE-2016-7933, CVE-2016-7934, CVE-2016-7935, CVE-2016-7936, CVE-2016-7937, CVE-2016-7938, CVE-2016-7939, CVE-2016-7940, CVE-2016-7973, CVE-2016-7974, CVE-2016-7975, CVE-2016-7983, CVE-2016-7984, CVE-2016-7985, CVE-2016-7986, CVE-2016-7992, CVE-2016-7993, CVE-2016-8574, CVE-2016-8575, CVE-2017-5202, CVE-2017-5203, CVE-2017-5204, CVE-2017-5205, CVE-2017-5341, CVE-2017-5342, CVE-2017-5482, CVE-2017-5483, CVE-2017-5484, CVE-2017-5485, CVE-2017-5486)
Red Hat would like to thank the Tcpdump project for reporting CVE-2016-7922, CVE-2016-7923, CVE-2016-7924, CVE-2016-7925, CVE-2016-7926, CVE-2016-7927, CVE-2016-7928, CVE-2016-7929, CVE-2016-7930, CVE-2016-7931, CVE-2016-7932, CVE-2016-7933, CVE-2016-7934, CVE-2016-7935, CVE-2016-7936, CVE-2016-7937, CVE-2016-7938, CVE-2016-7939, CVE-2016-7940, CVE-2016-7973, CVE-2016-7974, CVE-2016-7975, CVE-2016-7983, CVE-2016-7984, CVE-2016-7985, CVE-2016-7986, CVE-2016-7992, CVE-2016-7993, CVE-2016-8574, CVE-2016-8575, CVE-2017-5202, CVE-2017-5203, CVE-2017-5204, CVE-2017-5205, CVE-2017-5341, CVE-2017-5342, CVE-2017-5482, CVE-2017-5483, CVE-2017-5484, CVE-2017-5485, and CVE-2017-5486.
Additional Changes:
For detailed information on changes in this release, see the Red Hat Enterprise Linux 7.4 Release Notes linked from the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
Integer signedness error in the mobility_opt_print function in the IPv6 mobility printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (out-of-bounds read and crash) or possibly execute arbitrary code via a negative length value.
6.8 ()
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
The rpki_rtr_pdu_print function in print-rpki-rtr.c in the TCP printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (out-of-bounds read or write and crash) via a crafted header length in an RPKI-RTR Protocol Data Unit (PDU).
6.8 ()
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
The osi_print_cksum function in print-isoclns.c in the ethernet printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a crafted (1) length, (2) offset, or (3) base pointer checksum value.
6.8 ()
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Low
The force printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unspecified vectors.
6.8 ()
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.
6.5 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
References
153 references
Acknowledgments
the Tcpdump project
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for tcpdump is now available for Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The tcpdump packages contain the tcpdump utility for monitoring network traffic. The tcpdump utility can capture and display the packet headers on a particular network interface or on all interfaces.\n\nThe following packages have been upgraded to a later upstream version: tcpdump (4.9.0). (BZ#1422473)\n\nSecurity Fix(es):\n\n* Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop. (CVE-2015-0261, CVE-2015-2153, CVE-2015-2154, CVE-2015-2155, CVE-2016-7922, CVE-2016-7923, CVE-2016-7924, CVE-2016-7925, CVE-2016-7926, CVE-2016-7927, CVE-2016-7928, CVE-2016-7929, CVE-2016-7930, CVE-2016-7931, CVE-2016-7932, CVE-2016-7933, CVE-2016-7934, CVE-2016-7935, CVE-2016-7936, CVE-2016-7937, CVE-2016-7938, CVE-2016-7939, CVE-2016-7940, CVE-2016-7973, CVE-2016-7974, CVE-2016-7975, CVE-2016-7983, CVE-2016-7984, CVE-2016-7985, CVE-2016-7986, CVE-2016-7992, CVE-2016-7993, CVE-2016-8574, CVE-2016-8575, CVE-2017-5202, CVE-2017-5203, CVE-2017-5204, CVE-2017-5205, CVE-2017-5341, CVE-2017-5342, CVE-2017-5482, CVE-2017-5483, CVE-2017-5484, CVE-2017-5485, CVE-2017-5486)\n\nRed Hat would like to thank the Tcpdump project for reporting CVE-2016-7922, CVE-2016-7923, CVE-2016-7924, CVE-2016-7925, CVE-2016-7926, CVE-2016-7927, CVE-2016-7928, CVE-2016-7929, CVE-2016-7930, CVE-2016-7931, CVE-2016-7932, CVE-2016-7933, CVE-2016-7934, CVE-2016-7935, CVE-2016-7936, CVE-2016-7937, CVE-2016-7938, CVE-2016-7939, CVE-2016-7940, CVE-2016-7973, CVE-2016-7974, CVE-2016-7975, CVE-2016-7983, CVE-2016-7984, CVE-2016-7985, CVE-2016-7986, CVE-2016-7992, CVE-2016-7993, CVE-2016-8574, CVE-2016-8575, CVE-2017-5202, CVE-2017-5203, CVE-2017-5204, CVE-2017-5205, CVE-2017-5341, CVE-2017-5342, CVE-2017-5482, CVE-2017-5483, CVE-2017-5484, CVE-2017-5485, and CVE-2017-5486.\n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the Red Hat Enterprise Linux 7.4 Release Notes linked from the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2017:1871",
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7/html/7.4_Release_Notes/index.html",
"url": "https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7/html/7.4_Release_Notes/index.html"
},
{
"category": "external",
"summary": "1201792",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1201792"
},
{
"category": "external",
"summary": "1201795",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1201795"
},
{
"category": "external",
"summary": "1201797",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1201797"
},
{
"category": "external",
"summary": "1201798",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1201798"
},
{
"category": "external",
"summary": "1292056",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1292056"
},
{
"category": "external",
"summary": "1296230",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1296230"
},
{
"category": "external",
"summary": "1297812",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1297812"
},
{
"category": "external",
"summary": "1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "1441597",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1441597"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2017/rhsa-2017_1871.json"
}
],
"title": "Red Hat Security Advisory: tcpdump security, bug fix, and enhancement update",
"tracking": {
"current_release_date": "2024-11-22T10:45:30+00:00",
"generator": {
"date": "2024-11-22T10:45:30+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2017:1871",
"initial_release_date": "2017-08-01T12:00:24+00:00",
"revision_history": [
{
"date": "2017-08-01T12:00:24+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2017-08-01T12:00:24+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-22T10:45:30+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Client (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::client"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux ComputeNode (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::computenode"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::workstation"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "tcpdump-14:4.9.0-5.el7.x86_64",
"product": {
"name": "tcpdump-14:4.9.0-5.el7.x86_64",
"product_id": "tcpdump-14:4.9.0-5.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tcpdump@4.9.0-5.el7?arch=x86_64\u0026epoch=14"
}
}
},
{
"category": "product_version",
"name": "tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"product": {
"name": "tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"product_id": "tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tcpdump-debuginfo@4.9.0-5.el7?arch=x86_64\u0026epoch=14"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "tcpdump-14:4.9.0-5.el7.src",
"product": {
"name": "tcpdump-14:4.9.0-5.el7.src",
"product_id": "tcpdump-14:4.9.0-5.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tcpdump@4.9.0-5.el7?arch=src\u0026epoch=14"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "tcpdump-14:4.9.0-5.el7.aarch64",
"product": {
"name": "tcpdump-14:4.9.0-5.el7.aarch64",
"product_id": "tcpdump-14:4.9.0-5.el7.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tcpdump@4.9.0-5.el7?arch=aarch64\u0026epoch=14"
}
}
},
{
"category": "product_version",
"name": "tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"product": {
"name": "tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"product_id": "tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tcpdump-debuginfo@4.9.0-5.el7?arch=aarch64\u0026epoch=14"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "tcpdump-14:4.9.0-5.el7.ppc64le",
"product": {
"name": "tcpdump-14:4.9.0-5.el7.ppc64le",
"product_id": "tcpdump-14:4.9.0-5.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tcpdump@4.9.0-5.el7?arch=ppc64le\u0026epoch=14"
}
}
},
{
"category": "product_version",
"name": "tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"product": {
"name": "tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"product_id": "tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tcpdump-debuginfo@4.9.0-5.el7?arch=ppc64le\u0026epoch=14"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "tcpdump-14:4.9.0-5.el7.ppc64",
"product": {
"name": "tcpdump-14:4.9.0-5.el7.ppc64",
"product_id": "tcpdump-14:4.9.0-5.el7.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tcpdump@4.9.0-5.el7?arch=ppc64\u0026epoch=14"
}
}
},
{
"category": "product_version",
"name": "tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"product": {
"name": "tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"product_id": "tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tcpdump-debuginfo@4.9.0-5.el7?arch=ppc64\u0026epoch=14"
}
}
}
],
"category": "architecture",
"name": "ppc64"
},
{
"branches": [
{
"category": "product_version",
"name": "tcpdump-14:4.9.0-5.el7.s390x",
"product": {
"name": "tcpdump-14:4.9.0-5.el7.s390x",
"product_id": "tcpdump-14:4.9.0-5.el7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tcpdump@4.9.0-5.el7?arch=s390x\u0026epoch=14"
}
}
},
{
"category": "product_version",
"name": "tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"product": {
"name": "tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"product_id": "tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tcpdump-debuginfo@4.9.0-5.el7?arch=s390x\u0026epoch=14"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-14:4.9.0-5.el7.aarch64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client:tcpdump-14:4.9.0-5.el7.aarch64"
},
"product_reference": "tcpdump-14:4.9.0-5.el7.aarch64",
"relates_to_product_reference": "7Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-14:4.9.0-5.el7.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client:tcpdump-14:4.9.0-5.el7.ppc64"
},
"product_reference": "tcpdump-14:4.9.0-5.el7.ppc64",
"relates_to_product_reference": "7Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-14:4.9.0-5.el7.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client:tcpdump-14:4.9.0-5.el7.ppc64le"
},
"product_reference": "tcpdump-14:4.9.0-5.el7.ppc64le",
"relates_to_product_reference": "7Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-14:4.9.0-5.el7.s390x as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client:tcpdump-14:4.9.0-5.el7.s390x"
},
"product_reference": "tcpdump-14:4.9.0-5.el7.s390x",
"relates_to_product_reference": "7Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-14:4.9.0-5.el7.src as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client:tcpdump-14:4.9.0-5.el7.src"
},
"product_reference": "tcpdump-14:4.9.0-5.el7.src",
"relates_to_product_reference": "7Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-14:4.9.0-5.el7.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client:tcpdump-14:4.9.0-5.el7.x86_64"
},
"product_reference": "tcpdump-14:4.9.0-5.el7.x86_64",
"relates_to_product_reference": "7Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64"
},
"product_reference": "tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"relates_to_product_reference": "7Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64"
},
"product_reference": "tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"relates_to_product_reference": "7Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le"
},
"product_reference": "tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"relates_to_product_reference": "7Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-debuginfo-14:4.9.0-5.el7.s390x as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x"
},
"product_reference": "tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"relates_to_product_reference": "7Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
},
"product_reference": "tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"relates_to_product_reference": "7Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-14:4.9.0-5.el7.aarch64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64"
},
"product_reference": "tcpdump-14:4.9.0-5.el7.aarch64",
"relates_to_product_reference": "7ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-14:4.9.0-5.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64"
},
"product_reference": "tcpdump-14:4.9.0-5.el7.ppc64",
"relates_to_product_reference": "7ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-14:4.9.0-5.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le"
},
"product_reference": "tcpdump-14:4.9.0-5.el7.ppc64le",
"relates_to_product_reference": "7ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-14:4.9.0-5.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x"
},
"product_reference": "tcpdump-14:4.9.0-5.el7.s390x",
"relates_to_product_reference": "7ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-14:4.9.0-5.el7.src as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode:tcpdump-14:4.9.0-5.el7.src"
},
"product_reference": "tcpdump-14:4.9.0-5.el7.src",
"relates_to_product_reference": "7ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-14:4.9.0-5.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64"
},
"product_reference": "tcpdump-14:4.9.0-5.el7.x86_64",
"relates_to_product_reference": "7ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64"
},
"product_reference": "tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"relates_to_product_reference": "7ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64"
},
"product_reference": "tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"relates_to_product_reference": "7ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le"
},
"product_reference": "tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"relates_to_product_reference": "7ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-debuginfo-14:4.9.0-5.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x"
},
"product_reference": "tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"relates_to_product_reference": "7ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
},
"product_reference": "tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"relates_to_product_reference": "7ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-14:4.9.0-5.el7.aarch64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server:tcpdump-14:4.9.0-5.el7.aarch64"
},
"product_reference": "tcpdump-14:4.9.0-5.el7.aarch64",
"relates_to_product_reference": "7Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-14:4.9.0-5.el7.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server:tcpdump-14:4.9.0-5.el7.ppc64"
},
"product_reference": "tcpdump-14:4.9.0-5.el7.ppc64",
"relates_to_product_reference": "7Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-14:4.9.0-5.el7.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server:tcpdump-14:4.9.0-5.el7.ppc64le"
},
"product_reference": "tcpdump-14:4.9.0-5.el7.ppc64le",
"relates_to_product_reference": "7Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-14:4.9.0-5.el7.s390x as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server:tcpdump-14:4.9.0-5.el7.s390x"
},
"product_reference": "tcpdump-14:4.9.0-5.el7.s390x",
"relates_to_product_reference": "7Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-14:4.9.0-5.el7.src as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server:tcpdump-14:4.9.0-5.el7.src"
},
"product_reference": "tcpdump-14:4.9.0-5.el7.src",
"relates_to_product_reference": "7Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-14:4.9.0-5.el7.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server:tcpdump-14:4.9.0-5.el7.x86_64"
},
"product_reference": "tcpdump-14:4.9.0-5.el7.x86_64",
"relates_to_product_reference": "7Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64"
},
"product_reference": "tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"relates_to_product_reference": "7Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64"
},
"product_reference": "tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"relates_to_product_reference": "7Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le"
},
"product_reference": "tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"relates_to_product_reference": "7Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-debuginfo-14:4.9.0-5.el7.s390x as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x"
},
"product_reference": "tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"relates_to_product_reference": "7Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
},
"product_reference": "tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"relates_to_product_reference": "7Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-14:4.9.0-5.el7.aarch64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation:tcpdump-14:4.9.0-5.el7.aarch64"
},
"product_reference": "tcpdump-14:4.9.0-5.el7.aarch64",
"relates_to_product_reference": "7Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-14:4.9.0-5.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation:tcpdump-14:4.9.0-5.el7.ppc64"
},
"product_reference": "tcpdump-14:4.9.0-5.el7.ppc64",
"relates_to_product_reference": "7Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-14:4.9.0-5.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le"
},
"product_reference": "tcpdump-14:4.9.0-5.el7.ppc64le",
"relates_to_product_reference": "7Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-14:4.9.0-5.el7.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation:tcpdump-14:4.9.0-5.el7.s390x"
},
"product_reference": "tcpdump-14:4.9.0-5.el7.s390x",
"relates_to_product_reference": "7Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-14:4.9.0-5.el7.src as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation:tcpdump-14:4.9.0-5.el7.src"
},
"product_reference": "tcpdump-14:4.9.0-5.el7.src",
"relates_to_product_reference": "7Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-14:4.9.0-5.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation:tcpdump-14:4.9.0-5.el7.x86_64"
},
"product_reference": "tcpdump-14:4.9.0-5.el7.x86_64",
"relates_to_product_reference": "7Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-debuginfo-14:4.9.0-5.el7.aarch64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64"
},
"product_reference": "tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"relates_to_product_reference": "7Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-debuginfo-14:4.9.0-5.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64"
},
"product_reference": "tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"relates_to_product_reference": "7Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le"
},
"product_reference": "tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"relates_to_product_reference": "7Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-debuginfo-14:4.9.0-5.el7.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x"
},
"product_reference": "tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"relates_to_product_reference": "7Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-debuginfo-14:4.9.0-5.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
},
"product_reference": "tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"relates_to_product_reference": "7Workstation"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2015-0261",
"discovery_date": "2015-03-10T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1201792"
}
],
"notes": [
{
"category": "description",
"text": "Integer signedness error in the mobility_opt_print function in the IPv6 mobility printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (out-of-bounds read and crash) or possibly execute arbitrary code via a negative length value.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: IPv6 mobility printer mobility_opt_print() typecastimg/signedness error",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2015-0261"
},
{
"category": "external",
"summary": "RHBZ#1201792",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1201792"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2015-0261",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-0261"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-0261",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0261"
}
],
"release_date": "2015-03-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: IPv6 mobility printer mobility_opt_print() typecastimg/signedness error"
},
{
"cve": "CVE-2015-2153",
"discovery_date": "2015-03-10T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1201795"
}
],
"notes": [
{
"category": "description",
"text": "The rpki_rtr_pdu_print function in print-rpki-rtr.c in the TCP printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (out-of-bounds read or write and crash) via a crafted header length in an RPKI-RTR Protocol Data Unit (PDU).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: tcp printer rpki_rtr_pdu_print() missing length check",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2015-2153"
},
{
"category": "external",
"summary": "RHBZ#1201795",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1201795"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2015-2153",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-2153"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-2153",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2015-2153"
}
],
"release_date": "2015-03-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: tcp printer rpki_rtr_pdu_print() missing length check"
},
{
"cve": "CVE-2015-2154",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2015-03-10T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1201797"
}
],
"notes": [
{
"category": "description",
"text": "The osi_print_cksum function in print-isoclns.c in the ethernet printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a crafted (1) length, (2) offset, or (3) base pointer checksum value.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: ethernet printer osi_print_cksum() missing sanity checks out-of-bounds read",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2015-2154"
},
{
"category": "external",
"summary": "RHBZ#1201797",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1201797"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2015-2154",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-2154"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-2154",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2015-2154"
}
],
"release_date": "2015-03-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "tcpdump: ethernet printer osi_print_cksum() missing sanity checks out-of-bounds read"
},
{
"cve": "CVE-2015-2155",
"discovery_date": "2015-03-10T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1201798"
}
],
"notes": [
{
"category": "description",
"text": "The force printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unspecified vectors.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: force printer vulnerability",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2015-2155"
},
{
"category": "external",
"summary": "RHBZ#1201798",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1201798"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2015-2155",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-2155"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-2155",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2015-2155"
}
],
"release_date": "2015-03-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: force printer vulnerability"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2016-7922",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-7922"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-7922",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7922"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-7922",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-7922"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2016-7923",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-7923"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-7923",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7923"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-7923",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-7923"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2016-7924",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-7924"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-7924",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7924"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-7924",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-7924"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2016-7925",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-7925"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-7925",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7925"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-7925",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-7925"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2016-7926",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-7926"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-7926",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7926"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-7926",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-7926"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2016-7927",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-7927"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-7927",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7927"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-7927",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-7927"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2016-7928",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-7928"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-7928",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7928"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-7928",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-7928"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2016-7929",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-7929"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-7929",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7929"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-7929",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-7929"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2016-7930",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-7930"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-7930",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7930"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-7930",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-7930"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2016-7931",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-7931"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-7931",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7931"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-7931",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-7931"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2016-7932",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-7932"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-7932",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7932"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-7932",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-7932"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2016-7933",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-7933"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-7933",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7933"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-7933",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-7933"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2016-7934",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-7934"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-7934",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7934"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-7934",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-7934"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2016-7935",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-7935"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-7935",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7935"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-7935",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-7935"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2016-7936",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-7936"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-7936",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7936"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-7936",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-7936"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2016-7937",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-7937"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-7937",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7937"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-7937",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-7937"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2016-7938",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-7938"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-7938",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7938"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-7938",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-7938"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2016-7939",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-7939"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-7939",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7939"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-7939",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-7939"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2016-7940",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-7940"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-7940",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7940"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-7940",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-7940"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2016-7973",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-7973"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-7973",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7973"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-7973",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-7973"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2016-7974",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-7974"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-7974",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7974"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-7974",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-7974"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2016-7975",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-7975"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-7975",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7975"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-7975",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-7975"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2016-7983",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-7983"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-7983",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7983"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-7983",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-7983"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2016-7984",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-7984"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-7984",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7984"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-7984",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-7984"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2016-7985",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-7985"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-7985",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7985"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-7985",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-7985"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2016-7986",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-7986"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-7986",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7986"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-7986",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-7986"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2016-7992",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-7992"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-7992",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7992"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-7992",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-7992"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2016-7993",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-7993"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-7993",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7993"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-7993",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-7993"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2016-8574",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-8574"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-8574",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-8574"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-8574",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-8574"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2016-8575",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-8575"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-8575",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-8575"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-8575",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-8575"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2017-5202",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-5202"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-5202",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-5202"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-5202",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-5202"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2017-5203",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-5203"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-5203",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-5203"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-5203",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-5203"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2017-5204",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-5204"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-5204",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-5204"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-5204",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-5204"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2017-5205",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-5205"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-5205",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-5205"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-5205",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-5205"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2017-5341",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-5341"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-5341",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-5341"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-5341",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-5341"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2017-5342",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-5342"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-5342",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-5342"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-5342",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-5342"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2017-5482",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-5482"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-5482",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-5482"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-5482",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-5482"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2017-5483",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-5483"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-5483",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-5483"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-5483",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-5483"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2017-5484",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-5484"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-5484",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-5484"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-5484",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-5484"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2017-5485",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-5485"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-5485",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-5485"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-5485",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-5485"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
},
{
"acknowledgments": [
{
"names": [
"the Tcpdump project"
]
}
],
"cve": "CVE-2017-5486",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2017-01-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1419066"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode (without -w) which could cause it to display incorrect data, crash or enter an infinite loop.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tcpdump: multiple overflow issues in protocol decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated these issues as having Moderate security impact. These issues may be fixed in a future minor release of Red Hat Enterprise Linux 7. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-5486"
},
{
"category": "external",
"summary": "RHBZ#1419066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-5486",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-5486"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-5486",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-5486"
}
],
"release_date": "2017-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-08-01T12:00:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1871"
},
{
"category": "workaround",
"details": "When invoked with the \"-w\" option, to write raw packets to a pcap file (for forensic purposes or offline examination), tcpdump does not use the protocol decoding subsystem and is not affected by these flaws. Red Hat Product Security recommends that any unattended uses of tcpdump use this option to ensure uninterrupted packet capture.",
"product_ids": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client:tcpdump-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-14:4.9.0-5.el7.src",
"7Client:tcpdump-14:4.9.0-5.el7.x86_64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Client:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.src",
"7ComputeNode:tcpdump-14:4.9.0-5.el7.x86_64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7ComputeNode:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-14:4.9.0-5.el7.src",
"7Server:tcpdump-14:4.9.0-5.el7.x86_64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Server:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-14:4.9.0-5.el7.src",
"7Workstation:tcpdump-14:4.9.0-5.el7.x86_64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.aarch64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.ppc64le",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.s390x",
"7Workstation:tcpdump-debuginfo-14:4.9.0-5.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tcpdump: multiple overflow issues in protocol decoding"
}
]
}
SUSE-RU-2015:0335-1
Vulnerability from csaf_suse - Published: 2015-03-20 14:41 - Updated: 2015-03-20 14:41Summary
Security update for tcpdump
Severity
Moderate
Notes
Title of the patch: Security update for tcpdump
Description of the patch:
When running tcpdump, a remote unauthenticated user could have crashed the
application or, potentially, execute arbitrary code by injecting crafted
packages into the network.
The following vulnerabilities in protocol printers have been fixed:
* IPv6 mobility printer remote DoS (CVE-2015-0261, bnc#922220)
* Ethernet printer remote DoS (CVE-2015-2154, bnc#922222)
* PPP printer remote DoS (CVE-2014-9140, bnc#923142)
Security Issues:
* CVE-2015-0261
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0261>
* CVE-2015-2154
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2154>
* CVE-2014-9140
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9140>
Patchnames: sledsp3-tcpdump,slessp3-tcpdump
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
Affected products
Recommended
17 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:tcpdump-3.9.8-1.27.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:tcpdump-3.9.8-1.27.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
17 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:tcpdump-3.9.8-1.27.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:tcpdump-3.9.8-1.27.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
17 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:tcpdump-3.9.8-1.27.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:tcpdump-3.9.8-1.27.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
17 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:tcpdump-3.9.8-1.27.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:tcpdump-3.9.8-1.27.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
17 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:tcpdump-3.9.8-1.27.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:tcpdump-3.9.8-1.27.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
References
27 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for tcpdump",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\nWhen running tcpdump, a remote unauthenticated user could have crashed the \napplication or, potentially, execute arbitrary code by injecting crafted \npackages into the network.\n\nThe following vulnerabilities in protocol printers have been fixed:\n\n * IPv6 mobility printer remote DoS (CVE-2015-0261, bnc#922220)\n * Ethernet printer remote DoS (CVE-2015-2154, bnc#922222)\n * PPP printer remote DoS (CVE-2014-9140, bnc#923142)\n\nSecurity Issues:\n\n * CVE-2015-0261\n \u003chttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0261\u003e\n * CVE-2015-2154\n \u003chttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2154\u003e\n * CVE-2014-9140\n \u003chttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9140\u003e\n\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "sledsp3-tcpdump,slessp3-tcpdump",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-ru-2015_0335-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-RU-2015:0335-1",
"url": "https://www.suse.com/support/update/announcement//suse-ru-20150335-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-RU-2015:0335-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2015-February/002661.html"
},
{
"category": "self",
"summary": "SUSE Bug 905870",
"url": "https://bugzilla.suse.com/905870"
},
{
"category": "self",
"summary": "SUSE Bug 905872",
"url": "https://bugzilla.suse.com/905872"
},
{
"category": "self",
"summary": "SUSE Bug 912943",
"url": "https://bugzilla.suse.com/912943"
},
{
"category": "self",
"summary": "SUSE Bug 922220",
"url": "https://bugzilla.suse.com/922220"
},
{
"category": "self",
"summary": "SUSE Bug 922222",
"url": "https://bugzilla.suse.com/922222"
},
{
"category": "self",
"summary": "SUSE Bug 923142",
"url": "https://bugzilla.suse.com/923142"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-8767 page",
"url": "https://www.suse.com/security/cve/CVE-2014-8767/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-8769 page",
"url": "https://www.suse.com/security/cve/CVE-2014-8769/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9140 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9140/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0261 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0261/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-2154 page",
"url": "https://www.suse.com/security/cve/CVE-2015-2154/"
}
],
"title": "Security update for tcpdump",
"tracking": {
"current_release_date": "2015-03-20T14:41:11Z",
"generator": {
"date": "2015-03-20T14:41:11Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-RU-2015:0335-1",
"initial_release_date": "2015-03-20T14:41:11Z",
"revision_history": [
{
"date": "2015-03-20T14:41:11Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "tcpdump-3.9.8-1.27.1.i586",
"product": {
"name": "tcpdump-3.9.8-1.27.1.i586",
"product_id": "tcpdump-3.9.8-1.27.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "tcpdump-3.9.8-1.27.1.ia64",
"product": {
"name": "tcpdump-3.9.8-1.27.1.ia64",
"product_id": "tcpdump-3.9.8-1.27.1.ia64"
}
}
],
"category": "architecture",
"name": "ia64"
},
{
"branches": [
{
"category": "product_version",
"name": "tcpdump-3.9.8-1.27.1.ppc64",
"product": {
"name": "tcpdump-3.9.8-1.27.1.ppc64",
"product_id": "tcpdump-3.9.8-1.27.1.ppc64"
}
}
],
"category": "architecture",
"name": "ppc64"
},
{
"branches": [
{
"category": "product_version",
"name": "tcpdump-3.9.8-1.27.1.s390x",
"product": {
"name": "tcpdump-3.9.8-1.27.1.s390x",
"product_id": "tcpdump-3.9.8-1.27.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "tcpdump-3.9.8-1.27.1.x86_64",
"product": {
"name": "tcpdump-3.9.8-1.27.1.x86_64",
"product_id": "tcpdump-3.9.8-1.27.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Desktop 11 SP3",
"product": {
"name": "SUSE Linux Enterprise Desktop 11 SP3",
"product_id": "SUSE Linux Enterprise Desktop 11 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse_sled:11:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 11 SP3",
"product": {
"name": "SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse_sles:11:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product": {
"name": "SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:11:sp3:teradata"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:11:sp3"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-3.9.8-1.27.1.i586 as component of SUSE Linux Enterprise Desktop 11 SP3",
"product_id": "SUSE Linux Enterprise Desktop 11 SP3:tcpdump-3.9.8-1.27.1.i586"
},
"product_reference": "tcpdump-3.9.8-1.27.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Desktop 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-3.9.8-1.27.1.x86_64 as component of SUSE Linux Enterprise Desktop 11 SP3",
"product_id": "SUSE Linux Enterprise Desktop 11 SP3:tcpdump-3.9.8-1.27.1.x86_64"
},
"product_reference": "tcpdump-3.9.8-1.27.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Desktop 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-3.9.8-1.27.1.i586 as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.i586"
},
"product_reference": "tcpdump-3.9.8-1.27.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-3.9.8-1.27.1.ia64 as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.ia64"
},
"product_reference": "tcpdump-3.9.8-1.27.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-3.9.8-1.27.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.ppc64"
},
"product_reference": "tcpdump-3.9.8-1.27.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-3.9.8-1.27.1.s390x as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.s390x"
},
"product_reference": "tcpdump-3.9.8-1.27.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-3.9.8-1.27.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.x86_64"
},
"product_reference": "tcpdump-3.9.8-1.27.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-3.9.8-1.27.1.i586 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.i586"
},
"product_reference": "tcpdump-3.9.8-1.27.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-3.9.8-1.27.1.ia64 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.ia64"
},
"product_reference": "tcpdump-3.9.8-1.27.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-3.9.8-1.27.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.ppc64"
},
"product_reference": "tcpdump-3.9.8-1.27.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-3.9.8-1.27.1.s390x as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.s390x"
},
"product_reference": "tcpdump-3.9.8-1.27.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-3.9.8-1.27.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.x86_64"
},
"product_reference": "tcpdump-3.9.8-1.27.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-3.9.8-1.27.1.i586 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.i586"
},
"product_reference": "tcpdump-3.9.8-1.27.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-3.9.8-1.27.1.ia64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.ia64"
},
"product_reference": "tcpdump-3.9.8-1.27.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-3.9.8-1.27.1.ppc64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.ppc64"
},
"product_reference": "tcpdump-3.9.8-1.27.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-3.9.8-1.27.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.s390x"
},
"product_reference": "tcpdump-3.9.8-1.27.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-3.9.8-1.27.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.x86_64"
},
"product_reference": "tcpdump-3.9.8-1.27.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2014-8767",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-8767"
}
],
"notes": [
{
"category": "general",
"text": "Integer underflow in the olsr_print function in tcpdump 3.9.6 through 4.6.2, when in verbose mode, allows remote attackers to cause a denial of service (crash) via a crafted length value in an OLSR frame.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 11 SP3:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:tcpdump-3.9.8-1.27.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-8767",
"url": "https://www.suse.com/security/cve/CVE-2014-8767"
},
{
"category": "external",
"summary": "SUSE Bug 905870 for CVE-2014-8767",
"url": "https://bugzilla.suse.com/905870"
},
{
"category": "external",
"summary": "SUSE Bug 905871 for CVE-2014-8767",
"url": "https://bugzilla.suse.com/905871"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 11 SP3:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:tcpdump-3.9.8-1.27.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2015-03-20T14:41:11Z",
"details": "moderate"
}
],
"title": "CVE-2014-8767"
},
{
"cve": "CVE-2014-8769",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-8769"
}
],
"notes": [
{
"category": "general",
"text": "tcpdump 3.8 through 4.6.2 might allow remote attackers to obtain sensitive information from memory or cause a denial of service (packet loss or segmentation fault) via a crafted Ad hoc On-Demand Distance Vector (AODV) packet, which triggers an out-of-bounds memory access.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 11 SP3:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:tcpdump-3.9.8-1.27.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-8769",
"url": "https://www.suse.com/security/cve/CVE-2014-8769"
},
{
"category": "external",
"summary": "SUSE Bug 905871 for CVE-2014-8769",
"url": "https://bugzilla.suse.com/905871"
},
{
"category": "external",
"summary": "SUSE Bug 905872 for CVE-2014-8769",
"url": "https://bugzilla.suse.com/905872"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 11 SP3:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:tcpdump-3.9.8-1.27.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2015-03-20T14:41:11Z",
"details": "moderate"
}
],
"title": "CVE-2014-8769"
},
{
"cve": "CVE-2014-9140",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9140"
}
],
"notes": [
{
"category": "general",
"text": "Buffer overflow in the ppp_hdlc function in print-ppp.c in tcpdump 4.6.2 and earlier allows remote attackers to cause a denial of service (crash) cia a crafted PPP packet.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 11 SP3:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:tcpdump-3.9.8-1.27.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9140",
"url": "https://www.suse.com/security/cve/CVE-2014-9140"
},
{
"category": "external",
"summary": "SUSE Bug 923142 for CVE-2014-9140",
"url": "https://bugzilla.suse.com/923142"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 11 SP3:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:tcpdump-3.9.8-1.27.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2015-03-20T14:41:11Z",
"details": "moderate"
}
],
"title": "CVE-2014-9140"
},
{
"cve": "CVE-2015-0261",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0261"
}
],
"notes": [
{
"category": "general",
"text": "Integer signedness error in the mobility_opt_print function in the IPv6 mobility printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (out-of-bounds read and crash) or possibly execute arbitrary code via a negative length value.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 11 SP3:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:tcpdump-3.9.8-1.27.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0261",
"url": "https://www.suse.com/security/cve/CVE-2015-0261"
},
{
"category": "external",
"summary": "SUSE Bug 922220 for CVE-2015-0261",
"url": "https://bugzilla.suse.com/922220"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 11 SP3:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:tcpdump-3.9.8-1.27.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2015-03-20T14:41:11Z",
"details": "moderate"
}
],
"title": "CVE-2015-0261"
},
{
"cve": "CVE-2015-2154",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-2154"
}
],
"notes": [
{
"category": "general",
"text": "The osi_print_cksum function in print-isoclns.c in the ethernet printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a crafted (1) length, (2) offset, or (3) base pointer checksum value.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 11 SP3:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:tcpdump-3.9.8-1.27.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-2154",
"url": "https://www.suse.com/security/cve/CVE-2015-2154"
},
{
"category": "external",
"summary": "SUSE Bug 922222 for CVE-2015-2154",
"url": "https://bugzilla.suse.com/922222"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 11 SP3:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:tcpdump-3.9.8-1.27.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2015-03-20T14:41:11Z",
"details": "moderate"
}
],
"title": "CVE-2015-2154"
}
]
}
SUSE-SU-2015:0679-1
Vulnerability from csaf_suse - Published: 2015-03-20 14:25 - Updated: 2015-03-20 14:25Summary
Security update for tcpdump
Severity
Moderate
Notes
Title of the patch: Security update for tcpdump
Description of the patch: tcpdump was updated to fix five vulnerabilities in protocol printers
When running tcpdump, a remote unauthenticated user could have crashed the application or, potentially, execute arbitrary code by injecting crafted packages into the network.
The following vulnerabilities were fixed:
* IPv6 mobility printer remote DoS (CVE-2015-0261, bnc#922220)
* PPP printer remote DoS (CVE-2014-9140, bnc#923142)
* force printer remote DoS (CVE-2015-2155, bnc#922223)
* ethernet printer remote DoS (CVE-2015-2154, bnc#922222)
* tcp printer remote DoS (CVE-2015-2153, bnc#922221)
Patchnames: SUSE-SLE-DESKTOP-12-2015-159,SUSE-SLE-SERVER-12-2015-159
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
Affected products
Recommended
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Desktop 12:tcpdump-4.5.1-7.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:tcpdump-4.5.1-7.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:tcpdump-4.5.1-7.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:tcpdump-4.5.1-7.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:tcpdump-4.5.1-7.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:tcpdump-4.5.1-7.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:tcpdump-4.5.1-7.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Desktop 12:tcpdump-4.5.1-7.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:tcpdump-4.5.1-7.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:tcpdump-4.5.1-7.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:tcpdump-4.5.1-7.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:tcpdump-4.5.1-7.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:tcpdump-4.5.1-7.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:tcpdump-4.5.1-7.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Desktop 12:tcpdump-4.5.1-7.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:tcpdump-4.5.1-7.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:tcpdump-4.5.1-7.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:tcpdump-4.5.1-7.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:tcpdump-4.5.1-7.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:tcpdump-4.5.1-7.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:tcpdump-4.5.1-7.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Desktop 12:tcpdump-4.5.1-7.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:tcpdump-4.5.1-7.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:tcpdump-4.5.1-7.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:tcpdump-4.5.1-7.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:tcpdump-4.5.1-7.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:tcpdump-4.5.1-7.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:tcpdump-4.5.1-7.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Desktop 12:tcpdump-4.5.1-7.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:tcpdump-4.5.1-7.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:tcpdump-4.5.1-7.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:tcpdump-4.5.1-7.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:tcpdump-4.5.1-7.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:tcpdump-4.5.1-7.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:tcpdump-4.5.1-7.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
References
29 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for tcpdump",
"title": "Title of the patch"
},
{
"category": "description",
"text": "tcpdump was updated to fix five vulnerabilities in protocol printers\n\nWhen running tcpdump, a remote unauthenticated user could have crashed the application or, potentially, execute arbitrary code by injecting crafted packages into the network.\n\nThe following vulnerabilities were fixed:\n * IPv6 mobility printer remote DoS (CVE-2015-0261, bnc#922220)\n * PPP printer remote DoS (CVE-2014-9140, bnc#923142)\n * force printer remote DoS (CVE-2015-2155, bnc#922223)\n * ethernet printer remote DoS (CVE-2015-2154, bnc#922222)\n * tcp printer remote DoS (CVE-2015-2153, bnc#922221)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-SLE-DESKTOP-12-2015-159,SUSE-SLE-SERVER-12-2015-159",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2015_0679-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2015:0679-1",
"url": "https://www.suse.com/support/update/announcement/2015/suse-su-20150679-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2015:0679-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2015-April/001335.html"
},
{
"category": "self",
"summary": "SUSE Bug 922220",
"url": "https://bugzilla.suse.com/922220"
},
{
"category": "self",
"summary": "SUSE Bug 922221",
"url": "https://bugzilla.suse.com/922221"
},
{
"category": "self",
"summary": "SUSE Bug 922222",
"url": "https://bugzilla.suse.com/922222"
},
{
"category": "self",
"summary": "SUSE Bug 922223",
"url": "https://bugzilla.suse.com/922223"
},
{
"category": "self",
"summary": "SUSE Bug 923142",
"url": "https://bugzilla.suse.com/923142"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9140 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9140/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0261 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0261/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-2153 page",
"url": "https://www.suse.com/security/cve/CVE-2015-2153/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-2154 page",
"url": "https://www.suse.com/security/cve/CVE-2015-2154/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-2155 page",
"url": "https://www.suse.com/security/cve/CVE-2015-2155/"
}
],
"title": "Security update for tcpdump",
"tracking": {
"current_release_date": "2015-03-20T14:25:34Z",
"generator": {
"date": "2015-03-20T14:25:34Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2015:0679-1",
"initial_release_date": "2015-03-20T14:25:34Z",
"revision_history": [
{
"date": "2015-03-20T14:25:34Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "tcpdump-4.5.1-7.1.ppc64le",
"product": {
"name": "tcpdump-4.5.1-7.1.ppc64le",
"product_id": "tcpdump-4.5.1-7.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "tcpdump-4.5.1-7.1.s390x",
"product": {
"name": "tcpdump-4.5.1-7.1.s390x",
"product_id": "tcpdump-4.5.1-7.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "tcpdump-4.5.1-7.1.x86_64",
"product": {
"name": "tcpdump-4.5.1-7.1.x86_64",
"product_id": "tcpdump-4.5.1-7.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Desktop 12",
"product": {
"name": "SUSE Linux Enterprise Desktop 12",
"product_id": "SUSE Linux Enterprise Desktop 12",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sled:12"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12",
"product": {
"name": "SUSE Linux Enterprise Server 12",
"product_id": "SUSE Linux Enterprise Server 12",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:12"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 12",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:12"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-4.5.1-7.1.x86_64 as component of SUSE Linux Enterprise Desktop 12",
"product_id": "SUSE Linux Enterprise Desktop 12:tcpdump-4.5.1-7.1.x86_64"
},
"product_reference": "tcpdump-4.5.1-7.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Desktop 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-4.5.1-7.1.ppc64le as component of SUSE Linux Enterprise Server 12",
"product_id": "SUSE Linux Enterprise Server 12:tcpdump-4.5.1-7.1.ppc64le"
},
"product_reference": "tcpdump-4.5.1-7.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-4.5.1-7.1.s390x as component of SUSE Linux Enterprise Server 12",
"product_id": "SUSE Linux Enterprise Server 12:tcpdump-4.5.1-7.1.s390x"
},
"product_reference": "tcpdump-4.5.1-7.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-4.5.1-7.1.x86_64 as component of SUSE Linux Enterprise Server 12",
"product_id": "SUSE Linux Enterprise Server 12:tcpdump-4.5.1-7.1.x86_64"
},
"product_reference": "tcpdump-4.5.1-7.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-4.5.1-7.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12:tcpdump-4.5.1-7.1.ppc64le"
},
"product_reference": "tcpdump-4.5.1-7.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-4.5.1-7.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12:tcpdump-4.5.1-7.1.s390x"
},
"product_reference": "tcpdump-4.5.1-7.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-4.5.1-7.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12:tcpdump-4.5.1-7.1.x86_64"
},
"product_reference": "tcpdump-4.5.1-7.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2014-9140",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9140"
}
],
"notes": [
{
"category": "general",
"text": "Buffer overflow in the ppp_hdlc function in print-ppp.c in tcpdump 4.6.2 and earlier allows remote attackers to cause a denial of service (crash) cia a crafted PPP packet.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12:tcpdump-4.5.1-7.1.x86_64",
"SUSE Linux Enterprise Server 12:tcpdump-4.5.1-7.1.ppc64le",
"SUSE Linux Enterprise Server 12:tcpdump-4.5.1-7.1.s390x",
"SUSE Linux Enterprise Server 12:tcpdump-4.5.1-7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:tcpdump-4.5.1-7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:tcpdump-4.5.1-7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:tcpdump-4.5.1-7.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9140",
"url": "https://www.suse.com/security/cve/CVE-2014-9140"
},
{
"category": "external",
"summary": "SUSE Bug 923142 for CVE-2014-9140",
"url": "https://bugzilla.suse.com/923142"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12:tcpdump-4.5.1-7.1.x86_64",
"SUSE Linux Enterprise Server 12:tcpdump-4.5.1-7.1.ppc64le",
"SUSE Linux Enterprise Server 12:tcpdump-4.5.1-7.1.s390x",
"SUSE Linux Enterprise Server 12:tcpdump-4.5.1-7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:tcpdump-4.5.1-7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:tcpdump-4.5.1-7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:tcpdump-4.5.1-7.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2015-03-20T14:25:34Z",
"details": "moderate"
}
],
"title": "CVE-2014-9140"
},
{
"cve": "CVE-2015-0261",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0261"
}
],
"notes": [
{
"category": "general",
"text": "Integer signedness error in the mobility_opt_print function in the IPv6 mobility printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (out-of-bounds read and crash) or possibly execute arbitrary code via a negative length value.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12:tcpdump-4.5.1-7.1.x86_64",
"SUSE Linux Enterprise Server 12:tcpdump-4.5.1-7.1.ppc64le",
"SUSE Linux Enterprise Server 12:tcpdump-4.5.1-7.1.s390x",
"SUSE Linux Enterprise Server 12:tcpdump-4.5.1-7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:tcpdump-4.5.1-7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:tcpdump-4.5.1-7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:tcpdump-4.5.1-7.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0261",
"url": "https://www.suse.com/security/cve/CVE-2015-0261"
},
{
"category": "external",
"summary": "SUSE Bug 922220 for CVE-2015-0261",
"url": "https://bugzilla.suse.com/922220"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12:tcpdump-4.5.1-7.1.x86_64",
"SUSE Linux Enterprise Server 12:tcpdump-4.5.1-7.1.ppc64le",
"SUSE Linux Enterprise Server 12:tcpdump-4.5.1-7.1.s390x",
"SUSE Linux Enterprise Server 12:tcpdump-4.5.1-7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:tcpdump-4.5.1-7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:tcpdump-4.5.1-7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:tcpdump-4.5.1-7.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2015-03-20T14:25:34Z",
"details": "moderate"
}
],
"title": "CVE-2015-0261"
},
{
"cve": "CVE-2015-2153",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-2153"
}
],
"notes": [
{
"category": "general",
"text": "The rpki_rtr_pdu_print function in print-rpki-rtr.c in the TCP printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (out-of-bounds read or write and crash) via a crafted header length in an RPKI-RTR Protocol Data Unit (PDU).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12:tcpdump-4.5.1-7.1.x86_64",
"SUSE Linux Enterprise Server 12:tcpdump-4.5.1-7.1.ppc64le",
"SUSE Linux Enterprise Server 12:tcpdump-4.5.1-7.1.s390x",
"SUSE Linux Enterprise Server 12:tcpdump-4.5.1-7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:tcpdump-4.5.1-7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:tcpdump-4.5.1-7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:tcpdump-4.5.1-7.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-2153",
"url": "https://www.suse.com/security/cve/CVE-2015-2153"
},
{
"category": "external",
"summary": "SUSE Bug 922221 for CVE-2015-2153",
"url": "https://bugzilla.suse.com/922221"
},
{
"category": "external",
"summary": "SUSE Bug 922222 for CVE-2015-2153",
"url": "https://bugzilla.suse.com/922222"
},
{
"category": "external",
"summary": "SUSE Bug 922223 for CVE-2015-2153",
"url": "https://bugzilla.suse.com/922223"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12:tcpdump-4.5.1-7.1.x86_64",
"SUSE Linux Enterprise Server 12:tcpdump-4.5.1-7.1.ppc64le",
"SUSE Linux Enterprise Server 12:tcpdump-4.5.1-7.1.s390x",
"SUSE Linux Enterprise Server 12:tcpdump-4.5.1-7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:tcpdump-4.5.1-7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:tcpdump-4.5.1-7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:tcpdump-4.5.1-7.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2015-03-20T14:25:34Z",
"details": "moderate"
}
],
"title": "CVE-2015-2153"
},
{
"cve": "CVE-2015-2154",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-2154"
}
],
"notes": [
{
"category": "general",
"text": "The osi_print_cksum function in print-isoclns.c in the ethernet printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a crafted (1) length, (2) offset, or (3) base pointer checksum value.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12:tcpdump-4.5.1-7.1.x86_64",
"SUSE Linux Enterprise Server 12:tcpdump-4.5.1-7.1.ppc64le",
"SUSE Linux Enterprise Server 12:tcpdump-4.5.1-7.1.s390x",
"SUSE Linux Enterprise Server 12:tcpdump-4.5.1-7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:tcpdump-4.5.1-7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:tcpdump-4.5.1-7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:tcpdump-4.5.1-7.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-2154",
"url": "https://www.suse.com/security/cve/CVE-2015-2154"
},
{
"category": "external",
"summary": "SUSE Bug 922222 for CVE-2015-2154",
"url": "https://bugzilla.suse.com/922222"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12:tcpdump-4.5.1-7.1.x86_64",
"SUSE Linux Enterprise Server 12:tcpdump-4.5.1-7.1.ppc64le",
"SUSE Linux Enterprise Server 12:tcpdump-4.5.1-7.1.s390x",
"SUSE Linux Enterprise Server 12:tcpdump-4.5.1-7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:tcpdump-4.5.1-7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:tcpdump-4.5.1-7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:tcpdump-4.5.1-7.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2015-03-20T14:25:34Z",
"details": "moderate"
}
],
"title": "CVE-2015-2154"
},
{
"cve": "CVE-2015-2155",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-2155"
}
],
"notes": [
{
"category": "general",
"text": "The force printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unspecified vectors.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12:tcpdump-4.5.1-7.1.x86_64",
"SUSE Linux Enterprise Server 12:tcpdump-4.5.1-7.1.ppc64le",
"SUSE Linux Enterprise Server 12:tcpdump-4.5.1-7.1.s390x",
"SUSE Linux Enterprise Server 12:tcpdump-4.5.1-7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:tcpdump-4.5.1-7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:tcpdump-4.5.1-7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:tcpdump-4.5.1-7.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-2155",
"url": "https://www.suse.com/security/cve/CVE-2015-2155"
},
{
"category": "external",
"summary": "SUSE Bug 922220 for CVE-2015-2155",
"url": "https://bugzilla.suse.com/922220"
},
{
"category": "external",
"summary": "SUSE Bug 922221 for CVE-2015-2155",
"url": "https://bugzilla.suse.com/922221"
},
{
"category": "external",
"summary": "SUSE Bug 922222 for CVE-2015-2155",
"url": "https://bugzilla.suse.com/922222"
},
{
"category": "external",
"summary": "SUSE Bug 922223 for CVE-2015-2155",
"url": "https://bugzilla.suse.com/922223"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12:tcpdump-4.5.1-7.1.x86_64",
"SUSE Linux Enterprise Server 12:tcpdump-4.5.1-7.1.ppc64le",
"SUSE Linux Enterprise Server 12:tcpdump-4.5.1-7.1.s390x",
"SUSE Linux Enterprise Server 12:tcpdump-4.5.1-7.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:tcpdump-4.5.1-7.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:tcpdump-4.5.1-7.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:tcpdump-4.5.1-7.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2015-03-20T14:25:34Z",
"details": "moderate"
}
],
"title": "CVE-2015-2155"
}
]
}
SUSE-SU-2015:0692-1
Vulnerability from csaf_suse - Published: 2015-03-20 14:41 - Updated: 2015-03-20 14:41Summary
Security update for tcpdump
Severity
Moderate
Notes
Title of the patch: Security update for tcpdump
Description of the patch:
When running tcpdump, a remote unauthenticated user could have crashed the
application or, potentially, execute arbitrary code by injecting crafted
packages into the network.
The following vulnerabilities in protocol printers have been fixed:
* IPv6 mobility printer remote DoS (CVE-2015-0261, bnc#922220)
* Ethernet printer remote DoS (CVE-2015-2154, bnc#922222)
* PPP printer remote DoS (CVE-2014-9140, bnc#923142)
Security Issues:
* CVE-2015-0261
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0261>
* CVE-2015-2154
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2154>
* CVE-2014-9140
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9140>
Patchnames: sledsp3-tcpdump,slessp3-tcpdump
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
Affected products
Recommended
17 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:tcpdump-3.9.8-1.27.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:tcpdump-3.9.8-1.27.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
17 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:tcpdump-3.9.8-1.27.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:tcpdump-3.9.8-1.27.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
17 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:tcpdump-3.9.8-1.27.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:tcpdump-3.9.8-1.27.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
17 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:tcpdump-3.9.8-1.27.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:tcpdump-3.9.8-1.27.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
17 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:tcpdump-3.9.8-1.27.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:tcpdump-3.9.8-1.27.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
References
27 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for tcpdump",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\nWhen running tcpdump, a remote unauthenticated user could have crashed the \napplication or, potentially, execute arbitrary code by injecting crafted \npackages into the network.\n\nThe following vulnerabilities in protocol printers have been fixed:\n\n * IPv6 mobility printer remote DoS (CVE-2015-0261, bnc#922220)\n * Ethernet printer remote DoS (CVE-2015-2154, bnc#922222)\n * PPP printer remote DoS (CVE-2014-9140, bnc#923142)\n\nSecurity Issues:\n\n * CVE-2015-0261\n \u003chttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0261\u003e\n * CVE-2015-2154\n \u003chttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2154\u003e\n * CVE-2014-9140\n \u003chttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9140\u003e\n\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "sledsp3-tcpdump,slessp3-tcpdump",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2015_0692-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2015:0692-1",
"url": "https://www.suse.com/support/update/announcement/2015/suse-su-20150692-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2015:0692-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2015-April/001338.html"
},
{
"category": "self",
"summary": "SUSE Bug 905870",
"url": "https://bugzilla.suse.com/905870"
},
{
"category": "self",
"summary": "SUSE Bug 905872",
"url": "https://bugzilla.suse.com/905872"
},
{
"category": "self",
"summary": "SUSE Bug 912943",
"url": "https://bugzilla.suse.com/912943"
},
{
"category": "self",
"summary": "SUSE Bug 922220",
"url": "https://bugzilla.suse.com/922220"
},
{
"category": "self",
"summary": "SUSE Bug 922222",
"url": "https://bugzilla.suse.com/922222"
},
{
"category": "self",
"summary": "SUSE Bug 923142",
"url": "https://bugzilla.suse.com/923142"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-8767 page",
"url": "https://www.suse.com/security/cve/CVE-2014-8767/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-8769 page",
"url": "https://www.suse.com/security/cve/CVE-2014-8769/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9140 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9140/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0261 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0261/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-2154 page",
"url": "https://www.suse.com/security/cve/CVE-2015-2154/"
}
],
"title": "Security update for tcpdump",
"tracking": {
"current_release_date": "2015-03-20T14:41:11Z",
"generator": {
"date": "2015-03-20T14:41:11Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2015:0692-1",
"initial_release_date": "2015-03-20T14:41:11Z",
"revision_history": [
{
"date": "2015-03-20T14:41:11Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "tcpdump-3.9.8-1.27.1.i586",
"product": {
"name": "tcpdump-3.9.8-1.27.1.i586",
"product_id": "tcpdump-3.9.8-1.27.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "tcpdump-3.9.8-1.27.1.ia64",
"product": {
"name": "tcpdump-3.9.8-1.27.1.ia64",
"product_id": "tcpdump-3.9.8-1.27.1.ia64"
}
}
],
"category": "architecture",
"name": "ia64"
},
{
"branches": [
{
"category": "product_version",
"name": "tcpdump-3.9.8-1.27.1.ppc64",
"product": {
"name": "tcpdump-3.9.8-1.27.1.ppc64",
"product_id": "tcpdump-3.9.8-1.27.1.ppc64"
}
}
],
"category": "architecture",
"name": "ppc64"
},
{
"branches": [
{
"category": "product_version",
"name": "tcpdump-3.9.8-1.27.1.s390x",
"product": {
"name": "tcpdump-3.9.8-1.27.1.s390x",
"product_id": "tcpdump-3.9.8-1.27.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "tcpdump-3.9.8-1.27.1.x86_64",
"product": {
"name": "tcpdump-3.9.8-1.27.1.x86_64",
"product_id": "tcpdump-3.9.8-1.27.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Desktop 11 SP3",
"product": {
"name": "SUSE Linux Enterprise Desktop 11 SP3",
"product_id": "SUSE Linux Enterprise Desktop 11 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse_sled:11:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 11 SP3",
"product": {
"name": "SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse_sles:11:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product": {
"name": "SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:11:sp3:teradata"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:11:sp3"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-3.9.8-1.27.1.i586 as component of SUSE Linux Enterprise Desktop 11 SP3",
"product_id": "SUSE Linux Enterprise Desktop 11 SP3:tcpdump-3.9.8-1.27.1.i586"
},
"product_reference": "tcpdump-3.9.8-1.27.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Desktop 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-3.9.8-1.27.1.x86_64 as component of SUSE Linux Enterprise Desktop 11 SP3",
"product_id": "SUSE Linux Enterprise Desktop 11 SP3:tcpdump-3.9.8-1.27.1.x86_64"
},
"product_reference": "tcpdump-3.9.8-1.27.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Desktop 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-3.9.8-1.27.1.i586 as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.i586"
},
"product_reference": "tcpdump-3.9.8-1.27.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-3.9.8-1.27.1.ia64 as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.ia64"
},
"product_reference": "tcpdump-3.9.8-1.27.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-3.9.8-1.27.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.ppc64"
},
"product_reference": "tcpdump-3.9.8-1.27.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-3.9.8-1.27.1.s390x as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.s390x"
},
"product_reference": "tcpdump-3.9.8-1.27.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-3.9.8-1.27.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.x86_64"
},
"product_reference": "tcpdump-3.9.8-1.27.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-3.9.8-1.27.1.i586 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.i586"
},
"product_reference": "tcpdump-3.9.8-1.27.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-3.9.8-1.27.1.ia64 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.ia64"
},
"product_reference": "tcpdump-3.9.8-1.27.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-3.9.8-1.27.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.ppc64"
},
"product_reference": "tcpdump-3.9.8-1.27.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-3.9.8-1.27.1.s390x as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.s390x"
},
"product_reference": "tcpdump-3.9.8-1.27.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-3.9.8-1.27.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.x86_64"
},
"product_reference": "tcpdump-3.9.8-1.27.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-3.9.8-1.27.1.i586 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.i586"
},
"product_reference": "tcpdump-3.9.8-1.27.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-3.9.8-1.27.1.ia64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.ia64"
},
"product_reference": "tcpdump-3.9.8-1.27.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-3.9.8-1.27.1.ppc64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.ppc64"
},
"product_reference": "tcpdump-3.9.8-1.27.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-3.9.8-1.27.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.s390x"
},
"product_reference": "tcpdump-3.9.8-1.27.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tcpdump-3.9.8-1.27.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.x86_64"
},
"product_reference": "tcpdump-3.9.8-1.27.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2014-8767",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-8767"
}
],
"notes": [
{
"category": "general",
"text": "Integer underflow in the olsr_print function in tcpdump 3.9.6 through 4.6.2, when in verbose mode, allows remote attackers to cause a denial of service (crash) via a crafted length value in an OLSR frame.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 11 SP3:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:tcpdump-3.9.8-1.27.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-8767",
"url": "https://www.suse.com/security/cve/CVE-2014-8767"
},
{
"category": "external",
"summary": "SUSE Bug 905870 for CVE-2014-8767",
"url": "https://bugzilla.suse.com/905870"
},
{
"category": "external",
"summary": "SUSE Bug 905871 for CVE-2014-8767",
"url": "https://bugzilla.suse.com/905871"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 11 SP3:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:tcpdump-3.9.8-1.27.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2015-03-20T14:41:11Z",
"details": "moderate"
}
],
"title": "CVE-2014-8767"
},
{
"cve": "CVE-2014-8769",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-8769"
}
],
"notes": [
{
"category": "general",
"text": "tcpdump 3.8 through 4.6.2 might allow remote attackers to obtain sensitive information from memory or cause a denial of service (packet loss or segmentation fault) via a crafted Ad hoc On-Demand Distance Vector (AODV) packet, which triggers an out-of-bounds memory access.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 11 SP3:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:tcpdump-3.9.8-1.27.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-8769",
"url": "https://www.suse.com/security/cve/CVE-2014-8769"
},
{
"category": "external",
"summary": "SUSE Bug 905871 for CVE-2014-8769",
"url": "https://bugzilla.suse.com/905871"
},
{
"category": "external",
"summary": "SUSE Bug 905872 for CVE-2014-8769",
"url": "https://bugzilla.suse.com/905872"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 11 SP3:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:tcpdump-3.9.8-1.27.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2015-03-20T14:41:11Z",
"details": "moderate"
}
],
"title": "CVE-2014-8769"
},
{
"cve": "CVE-2014-9140",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9140"
}
],
"notes": [
{
"category": "general",
"text": "Buffer overflow in the ppp_hdlc function in print-ppp.c in tcpdump 4.6.2 and earlier allows remote attackers to cause a denial of service (crash) cia a crafted PPP packet.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 11 SP3:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:tcpdump-3.9.8-1.27.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9140",
"url": "https://www.suse.com/security/cve/CVE-2014-9140"
},
{
"category": "external",
"summary": "SUSE Bug 923142 for CVE-2014-9140",
"url": "https://bugzilla.suse.com/923142"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 11 SP3:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:tcpdump-3.9.8-1.27.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2015-03-20T14:41:11Z",
"details": "moderate"
}
],
"title": "CVE-2014-9140"
},
{
"cve": "CVE-2015-0261",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0261"
}
],
"notes": [
{
"category": "general",
"text": "Integer signedness error in the mobility_opt_print function in the IPv6 mobility printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (out-of-bounds read and crash) or possibly execute arbitrary code via a negative length value.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 11 SP3:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:tcpdump-3.9.8-1.27.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0261",
"url": "https://www.suse.com/security/cve/CVE-2015-0261"
},
{
"category": "external",
"summary": "SUSE Bug 922220 for CVE-2015-0261",
"url": "https://bugzilla.suse.com/922220"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 11 SP3:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:tcpdump-3.9.8-1.27.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2015-03-20T14:41:11Z",
"details": "moderate"
}
],
"title": "CVE-2015-0261"
},
{
"cve": "CVE-2015-2154",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-2154"
}
],
"notes": [
{
"category": "general",
"text": "The osi_print_cksum function in print-isoclns.c in the ethernet printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a crafted (1) length, (2) offset, or (3) base pointer checksum value.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 11 SP3:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:tcpdump-3.9.8-1.27.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-2154",
"url": "https://www.suse.com/security/cve/CVE-2015-2154"
},
{
"category": "external",
"summary": "SUSE Bug 922222 for CVE-2015-2154",
"url": "https://bugzilla.suse.com/922222"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 11 SP3:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:tcpdump-3.9.8-1.27.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2015-03-20T14:41:11Z",
"details": "moderate"
}
],
"title": "CVE-2015-2154"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…