Published: 13/11/2017 Updated: 07/11/2023

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

CVSS v3 Base Score: 5.5 | Impact Score: 3.6 | Exploitability Score: 1.8

VMScore: 383

Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P

tcpdump prior to 4.9.3 has a heap-based buffer over-read related to aoe_print in print-aoe.c and lookup_emem in addrtoname.c.

Vulnerable Product	Search on Vulmon	Subscribe to Product
tcpdump tcpdump 4.9.2

Debian Bug report logs - #881862 tcpdump: CVE-2017-16808: heap-based buffer over-read related to aoe_print in print-aoec and lookup_emem in addrtonamec Package: src:tcpdump; Maintainer for src:tcpdump is Romain Francoise <rfrancoise@debianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Wed, 15 Nov ...

Several security issues were fixed in tcpdump ...

tcpdump 492 has a heap-based buffer over-read related to aoe_print in print-aoec and lookup_emem in addrtonamec ...

Full Disclosure mailing list archives   By Date By Thread </form>    APPLE-SA-2019-12-10-3 macOS Catalina 10152, Security Update 2019-002 Mojave, Security Update 2019-007 High Sierra <! ...

CWE-125 https://github.com/the-tcpdump-group/tcpdump/issues/645 http://www.securitytracker.com/id/1039773 http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00065.html https://seclists.org/bugtraq/2019/Oct/2 https://github.com/the-tcpdump-group/tcpdump/blob/tcpdump-4.9/CHANGES http://packetstormsecurity.com/files/154710/Slackware-Security-Advisory-tcpdump-Updates.html http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00053.html http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00050.html https://support.apple.com/kb/HT210788 https://seclists.org/bugtraq/2019/Dec/23 http://seclists.org/fulldisclosure/2019/Dec/26 https://usn.ubuntu.com/4252-2/https://usn.ubuntu.com/4252-1/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/R2UDPOSGVJQIYC33SQBXMDXHH4QDSDMU/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FNYXF3IY2X65IOD422SA6EQUULSGW7FN/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/62XY42U6HY3H2APR5EHNWCZ7SAQNMMJN/https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=881862 https://nvd.nist.gov https://usn.ubuntu.com/4252-2/

CVE-2017-16808

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

Mailing Lists

References

Vulmon Search

About

Products

Connect