The ARP parser in tcpdump before 4.9.0 has a buffer overflow in print-arp.c:arp_print().
The ARP parser in tcpdump before 4.9.0 has a buffer overflow in print-arp.c:arp_print().
https://www.mail-archive.com/debian-bugs-dist@lists.debian.org/msg1494526.html