CVSS: 9.8EPSS: 1%CPEs: 1EXPL: 0CVE-2017-13037 – Gentoo Linux Security Advisory 201709-23
https://notcve.org/view.php?id=CVE-2017-13037
09 Sep 2017 — The IP parser in tcpdump before 4.9.2 has a buffer over-read in print-ip.c:ip_printts(). El analizador sintáctico IP en tcpdump en versiones anteriores a la 4.9.2 tiene una vulnerabilidad de sobrelectura de búfer en print-ip.c:ip_printts(). Wilfried Kirsch discovered a buffer overflow in the SLIP decoder in tcpdump. A remote attacker could use this to cause a denial of service or possibly execute arbitrary code. Bhargava Shastry discovered a buffer overflow in the bitfield converter utility function bittok2... • http://www.debian.org/security/2017/dsa-3971 • CWE-125: Out-of-bounds Read •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-12986 – Gentoo Linux Security Advisory 201709-23
https://notcve.org/view.php?id=CVE-2017-12986
09 Sep 2017 — The IPv6 routing header parser in tcpdump before 4.9.2 has a buffer over-read in print-rt6.c:rt6_print(). El analizador sintáctico de cabeceras de enrutamiento IPv6 en tcpdump en versiones anteriores a la 4.9.2 tiene una vulnerabilidad de sobrelectura de búfer en print-rt6.c:rt6_print(). Wilfried Kirsch discovered a buffer overflow in the SLIP decoder in tcpdump. A remote attacker could use this to cause a denial of service or possibly execute arbitrary code. Bhargava Shastry discovered a buffer overflow in... • http://www.debian.org/security/2017/dsa-3971 • CWE-125: Out-of-bounds Read •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-12894 – Gentoo Linux Security Advisory 201709-23
https://notcve.org/view.php?id=CVE-2017-12894
09 Sep 2017 — Several protocol parsers in tcpdump before 4.9.2 could cause a buffer over-read in addrtoname.c:lookup_bytestring(). Varios analizadores sintácticos de protocolos en tcpdump en versiones anteriores a la 4.9.2 podrían provocar una sobrelectura de búfer en addrtoname.c:lookup_bytestring(). Wilfried Kirsch discovered a buffer overflow in the SLIP decoder in tcpdump. A remote attacker could use this to cause a denial of service or possibly execute arbitrary code. Bhargava Shastry discovered a buffer overflow in... • http://www.debian.org/security/2017/dsa-3971 • CWE-125: Out-of-bounds Read •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2017-12990 – Gentoo Linux Security Advisory 201709-23
https://notcve.org/view.php?id=CVE-2017-12990
09 Sep 2017 — The ISAKMP parser in tcpdump before 4.9.2 could enter an infinite loop due to bugs in print-isakmp.c, several functions. El analizador sintáctico ISAKMP en tcpdump en versiones anteriores a la 4.9.2 podría introducir un bucle infinito por varios fallos en print-isakmp.c en múltiples funciones. Wilfried Kirsch discovered a buffer overflow in the SLIP decoder in tcpdump. A remote attacker could use this to cause a denial of service or possibly execute arbitrary code. Bhargava Shastry discovered a buffer overf... • http://www.debian.org/security/2017/dsa-3971 • CWE-835: Loop with Unreachable Exit Condition ('Infinite Loop') •
CVSS: 9.8EPSS: 0%CPEs: 4EXPL: 0CVE-2017-13020 – Gentoo Linux Security Advisory 201709-23
https://notcve.org/view.php?id=CVE-2017-13020
09 Sep 2017 — The VTP parser in tcpdump before 4.9.2 has a buffer over-read in print-vtp.c:vtp_print(). El analizador sintáctico VTP en tcpdump en versiones anteriores a la 4.9.2 tiene una vulnerabilidad de sobrelectura de búfer en print-vtp.c:vtp_print(). Wilfried Kirsch discovered a buffer overflow in the SLIP decoder in tcpdump. A remote attacker could use this to cause a denial of service or possibly execute arbitrary code. Bhargava Shastry discovered a buffer overflow in the bitfield converter utility function bitto... • http://www.debian.org/security/2017/dsa-3971 • CWE-125: Out-of-bounds Read •
CVSS: 9.8EPSS: 0%CPEs: 4EXPL: 0CVE-2017-13028 – Gentoo Linux Security Advisory 201709-23
https://notcve.org/view.php?id=CVE-2017-13028
09 Sep 2017 — The BOOTP parser in tcpdump before 4.9.2 has a buffer over-read in print-bootp.c:bootp_print(). El analizador sintáctico BOOTP en tcpdump en versiones anteriores a la 4.9.2 tiene una vulnerabilidad de sobrelectura de búfer en print-bootp.c:bootp_print(). Wilfried Kirsch discovered a buffer overflow in the SLIP decoder in tcpdump. A remote attacker could use this to cause a denial of service or possibly execute arbitrary code. Bhargava Shastry discovered a buffer overflow in the bitfield converter utility fu... • http://www.debian.org/security/2017/dsa-3971 • CWE-125: Out-of-bounds Read •
CVSS: 9.8EPSS: 1%CPEs: 1EXPL: 0CVE-2017-13030 – Gentoo Linux Security Advisory 201709-23
https://notcve.org/view.php?id=CVE-2017-13030
09 Sep 2017 — The PIM parser in tcpdump before 4.9.2 has a buffer over-read in print-pim.c, several functions. El analizador sintáctico PIM en tcpdump en versiones anteriores a la 4.9.2 tiene una vulnerabilidad de sobrelectura de búfer en print-pim.c y otras funciones. Wilfried Kirsch discovered a buffer overflow in the SLIP decoder in tcpdump. A remote attacker could use this to cause a denial of service or possibly execute arbitrary code. Bhargava Shastry discovered a buffer overflow in the bitfield converter utility f... • http://www.debian.org/security/2017/dsa-3971 • CWE-125: Out-of-bounds Read •
CVSS: 9.8EPSS: 1%CPEs: 1EXPL: 0CVE-2017-13031 – Gentoo Linux Security Advisory 201709-23
https://notcve.org/view.php?id=CVE-2017-13031
09 Sep 2017 — The IPv6 fragmentation header parser in tcpdump before 4.9.2 has a buffer over-read in print-frag6.c:frag6_print(). El analizador sintáctico de cabeceras de fragmentación IPv6 en tcpdump en versiones anteriores a la 4.9.2 tiene una vulnerabilidad de sobrelectura de búfer en print-frag6.c:frag6_print(). Wilfried Kirsch discovered a buffer overflow in the SLIP decoder in tcpdump. A remote attacker could use this to cause a denial of service or possibly execute arbitrary code. Bhargava Shastry discovered a buf... • http://www.debian.org/security/2017/dsa-3971 • CWE-125: Out-of-bounds Read •
CVSS: 9.8EPSS: 1%CPEs: 1EXPL: 0CVE-2017-13049 – Gentoo Linux Security Advisory 201709-23
https://notcve.org/view.php?id=CVE-2017-13049
09 Sep 2017 — The Rx protocol parser in tcpdump before 4.9.2 has a buffer over-read in print-rx.c:ubik_print(). El analizador sintáctico de protocolo Rx en tcpdump en versiones anteriores a la 4.9.2 tiene una vulnerabilidad de sobrelectura de búfer en over-read in print-rx.c:ubik_print(). Wilfried Kirsch discovered a buffer overflow in the SLIP decoder in tcpdump. A remote attacker could use this to cause a denial of service or possibly execute arbitrary code. Bhargava Shastry discovered a buffer overflow in the bitfield... • http://www.debian.org/security/2017/dsa-3971 • CWE-125: Out-of-bounds Read •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-13010 – Gentoo Linux Security Advisory 201709-23
https://notcve.org/view.php?id=CVE-2017-13010
09 Sep 2017 — The BEEP parser in tcpdump before 4.9.2 has a buffer over-read in print-beep.c:l_strnstart(). El analizador sintáctico BEEP en tcpdump en versiones anteriores a la 4.9.2 tiene una vulnerabilidad de sobrelectura de búfer en print-beep.c:l_strnstart(). Wilfried Kirsch discovered a buffer overflow in the SLIP decoder in tcpdump. A remote attacker could use this to cause a denial of service or possibly execute arbitrary code. Bhargava Shastry discovered a buffer overflow in the bitfield converter utility functi... • http://www.debian.org/security/2017/dsa-3971 • CWE-125: Out-of-bounds Read •