CVE-2019-1010220
First published: Mon Jul 22 2019(Updated: )
tcpdump.org tcpdump 4.9.2 is affected by: CWE-126: Buffer Over-read. The impact is: May expose Saved Frame Pointer, Return Address etc. on stack. The component is: line 234: "ND_PRINT((ndo, "%s", buf));", in function named "print_prefix", in "print-hncp.c". The attack vector is: The victim must open a specially crafted pcap file.
Credit: josh@bress.net josh@bress.net
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Tcpdump Tcpdump | =4.9.2 | |
| ubuntu/tcpdump | <4.9.3-0ubuntu0.18.04.1 | 4.9.3-0ubuntu0.18.04.1 |
| ubuntu/tcpdump | <4.9.3-0ubuntu0.14.04.1+ | 4.9.3-0ubuntu0.14.04.1+ |
| ubuntu/tcpdump | <4.9.3 | 4.9.3 |
| ubuntu/tcpdump | <4.9.3-0ubuntu0.16.04.1 | 4.9.3-0ubuntu0.16.04.1 |
| debian/tcpdump | <=4.9.3-1~deb10u2<=4.9.3-1~deb10u1<=4.99.0-2+deb11u1<=4.99.3-1<=4.99.4-4 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00065.html
- http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00050.html
- http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00053.html
- https://github.com/the-tcpdump-group/tcpdump/blob/master/print-hncp.c
- https://github.com/the-tcpdump-group/tcpdump/blob/tcpdump-4.9.2/print-hncp.c
- https://github.com/the-tcpdump-group/tcpdump/commits/master/print-hncp.c
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/62XY42U6HY3H2APR5EHNWCZ7SAQNMMJN/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FNYXF3IY2X65IOD422SA6EQUULSGW7FN/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/R2UDPOSGVJQIYC33SQBXMDXHH4QDSDMU/
- https://usn.ubuntu.com/4252-1/
- https://usn.ubuntu.com/4252-2/
- https://launchpad.net/bugs/cve/CVE-2019-1010220
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/62XY42U6HY3H2APR5EHNWCZ7SAQNMMJN/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FNYXF3IY2X65IOD422SA6EQUULSGW7FN/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/R2UDPOSGVJQIYC33SQBXMDXHH4QDSDMU/
- https://security-tracker.debian.org/tracker/CVE-2019-1010220
- https://ubuntu.com/security/notices/USN-4252-1
- https://ubuntu.com/security/notices/USN-4252-2
- https://www.cve.org/CVERecord?id=CVE-2019-1010220
- https://nvd.nist.gov/vuln/detail/CVE-2019-1010220
- https://ubuntu.com/security/CVE-2019-1010220
Frequently Asked Questions
What is the vulnerability ID?
The vulnerability ID is CVE-2019-1010220.
What is the impact of the vulnerability?
The impact is the potential exposure of Saved Frame Pointer, Return Address, etc. on the stack.
Which component is affected by the vulnerability?
The component affected is line 234: "ND_PRINT((ndo, "%s", buf));", in the function named "print_prefix", in "print-hncp.c".
What is the attack vector for this vulnerability?
The attack vector requires the victim to open a maliciously crafted packet capture file or be on a network where malicious packets are being captured.
How can I fix the vulnerability?
To fix the vulnerability, update tcpdump to version 4.9.3 or later.
- collector/nvd-index
- agent/weakness
- agent/last-modified-date
- collector/launchpad-cve
- source/Launchpad
- agent/type
- agent/first-publish-date
- agent/author
- collector/nvd-cve
- source/NVD
- agent/software-canonical-lookup
- agent/severity
- agent/remedy
- agent/references
- agent/tags
- agent/event
- agent/description
- collector/security-tracker-debian
- source/Debian
- agent/softwarecombine
- collector/usn-cve
- source/Ubuntu
- vendor/tcpdump
- canonical/tcpdump tcpdump
- version/tcpdump tcpdump/4.9.2
- package-manager/debian
- package-manager/ubuntu