CVE-2016-7922: Buffer Overflow

First published: Sat Jan 28 2017(Updated: )

Multiple buffer overflows, and one integer overflow, in protocol decoding were found that may cause incorrect decoding, segmentation fault or (in the case of integer overflow) an infinite loop. These issues can be be exploited either locally, by making the target user decode a crafted .pcap file using tcpdump, or remotely by sending crafted packets to the network segment where the target system is running tcpdump decoding the live packet capture. Ability to send crafted packets to the target network segment is limited by the protocols' ability to cross network segments, or presence of firewall rules. Upstream changelog: <a href="http://www.tcpdump.org/tcpdump-changes.txt">http://www.tcpdump.org/tcpdump-changes.txt</a>

Credit: cve@mitre.org

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

• agent/type
• agent/softwarecombine
• collector/redhat-bugzilla
• source/Red Hat
• alias/CVE-2016-7922
• agent/software-canonical-lookup
• agent/weakness
• agent/severity
• agent/description
• agent/author
• collector/mitre-cve
• source/MITRE
• agent/last-modified-date
• agent/references
• agent/first-publish-date
• agent/event
• agent/source
• agent/tags
• collector/nvd-index
• agent/software-canonical-lookup-request
• package-manager/redhat
• vendor/tcpdump
• canonical/tcpdump tcpdump
• version/tcpdump tcpdump/4.8.1