The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a database and tools to fix them.

Computer vulnerabilities of tcpdump

computer vulnerability note CVE-2018-19519 CVE-2019-1010220

tcpdump: out-of-bounds memory reading via print_prefix

Synthesis of the vulnerability

An attacker can force a read at an invalid address via print_prefix() of tcpdump, in order to trigger a denial of service, or to obtain sensitive information.
Impacted products: AIX, openSUSE Leap, Solaris, SUSE Linux Enterprise Desktop, SLES, tcpdump.
Severity: 2/4.
Consequences: data reading, denial of service on service, denial of service on client.
Provenance: internet client.
Number of vulnerabilities in this bulletin: 2.
Creation date: 17/12/2018.
Identifiers: 763, bulletinjul2019, CVE-2018-19519, CVE-2019-1010220, openSUSE-SU-2018:4144-1, openSUSE-SU-2018:4252-1, openSUSE-SU-2019:1964-1, SUSE-SU-2018:4131-1, SUSE-SU-2018:4149-1, SUSE-SU-2019:2087-1, SUSE-SU-2019:2088-1, VIGILANCE-VUL-28029.

Description of the vulnerability

An attacker can force a read at an invalid address via print_prefix() of tcpdump, in order to trigger a denial of service, or to obtain sensitive information.
Full Vigil@nce bulletin... (Free trial)

computer vulnerability note CVE-2017-16808

tcpdump: out-of-bounds memory reading via aoe_print

Synthesis of the vulnerability

An attacker can force a read at an invalid address via aoe_print() of tcpdump, in order to trigger a denial of service, or to obtain sensitive information.
Impacted products: openSUSE Leap, Solaris, SUSE Linux Enterprise Desktop, SLES, tcpdump.
Severity: 2/4.
Consequences: data reading, denial of service on service, denial of service on client.
Provenance: document.
Creation date: 14/11/2017.
Identifiers: 645, bulletinjul2019, CVE-2017-16808, openSUSE-SU-2019:1964-1, SUSE-SU-2019:2087-1, SUSE-SU-2019:2088-1, VIGILANCE-VUL-24419.

Description of the vulnerability

An attacker can force a read at an invalid address via aoe_print() of tcpdump, in order to trigger a denial of service, or to obtain sensitive information.
Full Vigil@nce bulletin... (Free trial)

computer vulnerability announce CVE-2017-11541 CVE-2017-11542 CVE-2017-11543

tcpdump: multiple vulnerabilities

Synthesis of the vulnerability

An attacker can use several vulnerabilities of tcpdump.
Impacted products: Mac OS X, Debian, AIX, openSUSE Leap, Slackware, tcpdump, Ubuntu.
Severity: 2/4.
Consequences: user access/rights, denial of service on service, denial of service on client.
Provenance: internet client.
Number of vulnerabilities in this bulletin: 89.
Creation date: 08/09/2017.
Identifiers: CVE-2017-11541, CVE-2017-11542, CVE-2017-11543, CVE-2017-12893, CVE-2017-12894, CVE-2017-12895, CVE-2017-12896, CVE-2017-12897, CVE-2017-12898, CVE-2017-12899, CVE-2017-12900, CVE-2017-12901, CVE-2017-12902, CVE-2017-12985, CVE-2017-12986, CVE-2017-12987, CVE-2017-12988, CVE-2017-12989, CVE-2017-12990, CVE-2017-12991, CVE-2017-12992, CVE-2017-12993, CVE-2017-12994, CVE-2017-12995, CVE-2017-12996, CVE-2017-12997, CVE-2017-12998, CVE-2017-12999, CVE-2017-13000, CVE-2017-13001, CVE-2017-13002, CVE-2017-13003, CVE-2017-13004, CVE-2017-13005, CVE-2017-13006, CVE-2017-13007, CVE-2017-13008, CVE-2017-13009, CVE-2017-13010, CVE-2017-13011, CVE-2017-13012, CVE-2017-13013, CVE-2017-13014, CVE-2017-13015, CVE-2017-13016, CVE-2017-13017, CVE-2017-13018, CVE-2017-13019, CVE-2017-13020, CVE-2017-13021, CVE-2017-13022, CVE-2017-13023, CVE-2017-13024, CVE-2017-13025, CVE-2017-13026, CVE-2017-13027, CVE-2017-13028, CVE-2017-13029, CVE-2017-13030, CVE-2017-13031, CVE-2017-13032, CVE-2017-13033, CVE-2017-13034, CVE-2017-13035, CVE-2017-13036, CVE-2017-13037, CVE-2017-13038, CVE-2017-13039, CVE-2017-13040, CVE-2017-13041, CVE-2017-13042, CVE-2017-13043, CVE-2017-13044, CVE-2017-13045, CVE-2017-13046, CVE-2017-13047, CVE-2017-13048, CVE-2017-13049, CVE-2017-13050, CVE-2017-13051, CVE-2017-13052, CVE-2017-13053, CVE-2017-13054, CVE-2017-13055, CVE-2017-13687, CVE-2017-13688, CVE-2017-13689, CVE-2017-13690, CVE-2017-13725, DLA-1097-1, HT208221, openSUSE-SU-2017:2875-1, SSA:2017-251-03, tcpdump_advisory3, USN-3415-1, USN-3415-2, VIGILANCE-VUL-23787.

Description of the vulnerability

An attacker can use several vulnerabilities of tcpdump.
Full Vigil@nce bulletin... (Free trial)

vulnerability CVE-2017-11541 CVE-2017-11542 CVE-2017-11543

tcpdump: multiple vulnerabilities

Synthesis of the vulnerability

An attacker can use several vulnerabilities of tcpdump.
Impacted products: Mac OS X, Debian, AIX, openSUSE Leap, Slackware, tcpdump, Ubuntu.
Severity: 2/4.
Consequences: administrator access/rights, privileged access/rights, user access/rights, denial of service on service, denial of service on client.
Provenance: document.
Number of vulnerabilities in this bulletin: 5.
Creation date: 24/07/2017.
Identifiers: CVE-2017-11541, CVE-2017-11542, CVE-2017-11543, CVE-2017-11544-REJECT, CVE-2017-11545-REJECT, DLA-1090-1, DLA-1097-1, DSA-3971-1, HT208221, openSUSE-SU-2017:2875-1, SSA:2017-251-03, tcpdump_advisory3, USN-3415-1, USN-3415-2, VIGILANCE-VUL-23330.

Description of the vulnerability

An attacker can use several vulnerabilities of tcpdump.
Full Vigil@nce bulletin... (Free trial)

vulnerability bulletin CVE-2017-11108

tcpdump: out-of-bounds memory reading via EXTRACT_16BITS

Synthesis of the vulnerability

An attacker can force a read at an invalid address via EXTRACT_16BITS() of tcpdump, in order to trigger a denial of service, or to obtain sensitive information.
Impacted products: Mac OS X, Debian, openSUSE Leap, Solaris, Slackware, tcpdump, Ubuntu.
Severity: 1/4.
Consequences: data reading, denial of service on service, denial of service on client.
Provenance: intranet client.
Creation date: 10/07/2017.
Identifiers: 1468504, bulletinjul2017, CVE-2017-11108, DLA-1090-1, DLA-1097-1, DSA-3971-1, HT208221, openSUSE-SU-2017:2875-1, SSA:2017-205-01, USN-3415-1, USN-3415-2, VIGILANCE-VUL-23183.

Description of the vulnerability

An attacker can force a read at an invalid address via EXTRACT_16BITS() of tcpdump, in order to trigger a denial of service, or to obtain sensitive information.
Full Vigil@nce bulletin... (Free trial)

computer vulnerability CVE-2017-5482 CVE-2017-5483 CVE-2017-5484

tcpdump: five vulnerabilities

Synthesis of the vulnerability

An attacker can use several vulnerabilities of tcpdump.
Impacted products: Mac OS X, Debian, Fedora, AIX, openSUSE Leap, Solaris, RHEL, Slackware, Synology DSM, Synology DS***, tcpdump, Ubuntu.
Severity: 2/4.
Consequences: user access/rights, denial of service on service.
Provenance: intranet client.
Number of vulnerabilities in this bulletin: 5.
Creation date: 30/01/2017.
Identifiers: bulletinapr2017, CVE-2017-5482, CVE-2017-5483, CVE-2017-5484, CVE-2017-5485, CVE-2017-5486, DLA-809-1, DSA-3775-1, FEDORA-2017-7ecbc90157, HT207615, openSUSE-SU-2017:1199-1, RHSA-2017:1871-01, SSA:2017-041-04, USN-3205-1, VIGILANCE-VUL-21705.

Description of the vulnerability

An attacker can use several vulnerabilities of tcpdump.
Full Vigil@nce bulletin... (Free trial)

vulnerability note CVE-2017-5341 CVE-2017-5342

tcpdump: two vulnerabilities

Synthesis of the vulnerability

An attacker can use several vulnerabilities of tcpdump.
Impacted products: Mac OS X, Debian, Fedora, openSUSE Leap, Solaris, RHEL, Slackware, Synology DSM, Synology DS***, tcpdump, Ubuntu.
Severity: 2/4.
Consequences: user access/rights, denial of service on service.
Provenance: intranet client.
Number of vulnerabilities in this bulletin: 2.
Creation date: 30/01/2017.
Identifiers: bulletinapr2017, CVE-2017-5341, CVE-2017-5342, DLA-809-1, DSA-3775-1, FEDORA-2017-7ecbc90157, HT207615, openSUSE-SU-2017:1199-1, RHSA-2017:1871-01, SSA:2017-041-04, USN-3205-1, VIGILANCE-VUL-21704.

Description of the vulnerability

An attacker can use several vulnerabilities of tcpdump.
Full Vigil@nce bulletin... (Free trial)

vulnerability bulletin CVE-2017-5202 CVE-2017-5203 CVE-2017-5204

tcpdump: four vulnerabilities

Synthesis of the vulnerability

An attacker can use several vulnerabilities of tcpdump.
Impacted products: Mac OS X, Debian, Fedora, AIX, openSUSE Leap, Solaris, RHEL, Slackware, Synology DSM, Synology DS***, tcpdump, Ubuntu.
Severity: 2/4.
Consequences: user access/rights, denial of service on service.
Provenance: intranet client.
Number of vulnerabilities in this bulletin: 4.
Creation date: 30/01/2017.
Identifiers: bulletinapr2017, CVE-2017-5202, CVE-2017-5203, CVE-2017-5204, CVE-2017-5205, DLA-809-1, DSA-3775-1, FEDORA-2017-7ecbc90157, HT207615, openSUSE-SU-2017:1199-1, RHSA-2017:1871-01, SSA:2017-041-04, USN-3205-1, VIGILANCE-VUL-21703.

Description of the vulnerability

An attacker can use several vulnerabilities of tcpdump.
Full Vigil@nce bulletin... (Free trial)

vulnerability alert CVE-2016-8574 CVE-2016-8575

tcpdump: two vulnerabilities

Synthesis of the vulnerability

An attacker can use several vulnerabilities of tcpdump.
Impacted products: Mac OS X, Debian, Fedora, AIX, openSUSE Leap, Solaris, RHEL, Slackware, Synology DSM, Synology DS***, tcpdump, Ubuntu.
Severity: 2/4.
Consequences: user access/rights, denial of service on service.
Provenance: intranet client.
Number of vulnerabilities in this bulletin: 2.
Creation date: 30/01/2017.
Identifiers: bulletinapr2017, CVE-2016-8574, CVE-2016-8575, DLA-809-1, DSA-3775-1, FEDORA-2017-7ecbc90157, HT207615, openSUSE-SU-2017:1199-1, RHSA-2017:1871-01, SSA:2017-041-04, USN-3205-1, VIGILANCE-VUL-21701.

Description of the vulnerability

An attacker can use several vulnerabilities of tcpdump.
Full Vigil@nce bulletin... (Free trial)

vulnerability CVE-2016-7922 CVE-2016-7923 CVE-2016-7924

tcpdump: multiple vulnerabilities

Synthesis of the vulnerability

An attacker can use several vulnerabilities of tcpdump.
Impacted products: Mac OS X, Debian, BIG-IP Hardware, TMOS, Fedora, AIX, openSUSE Leap, Solaris, RHEL, Slackware, Synology DSM, Synology DS***, tcpdump, Ubuntu.
Severity: 2/4.
Consequences: user access/rights, denial of service on service.
Provenance: intranet client.
Number of vulnerabilities in this bulletin: 28.
Creation date: 30/01/2017.
Identifiers: bulletinapr2017, CVE-2016-7922, CVE-2016-7923, CVE-2016-7924, CVE-2016-7925, CVE-2016-7926, CVE-2016-7927, CVE-2016-7928, CVE-2016-7929, CVE-2016-7930, CVE-2016-7931, CVE-2016-7932, CVE-2016-7933, CVE-2016-7934, CVE-2016-7935, CVE-2016-7936, CVE-2016-7937, CVE-2016-7938, CVE-2016-7939, CVE-2016-7940, CVE-2016-7973, CVE-2016-7974, CVE-2016-7975, CVE-2016-7983, CVE-2016-7984, CVE-2016-7985, CVE-2016-7986, CVE-2016-7992, CVE-2016-7993, DLA-809-1, DSA-3775-1, FEDORA-2017-7ecbc90157, HT207615, K04225025, K31997425, K39512927, K49144112, K55129614, K72403108, K77384526, K94010578, K94778122, openSUSE-SU-2017:1199-1, RHSA-2017:1871-01, SSA:2017-041-04, USN-3205-1, VIGILANCE-VUL-21700.

Description of the vulnerability

An attacker can use several vulnerabilities of tcpdump.
Full Vigil@nce bulletin... (Free trial)
Our database contains other pages. You can request a free trial to read them.

Display information about tcpdump: