CVE-2019-15165
First published: Mon Sep 30 2019(Updated: )
libpcap. Multiple issues were addressed by updating to libpcap version 1.9.1
Credit: CVE-2019-15161 CVE-2019-15162 CVE-2019-15163 CVE-2019-15164 CVE-2019-15165 CVE-2019-15161 CVE-2019-15162 CVE-2019-15163 CVE-2019-15164 CVE-2019-15165 CVE-2019-15161 CVE-2019-15162 CVE-2019-15163 CVE-2019-15164 CVE-2019-15165 cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Tcpdump Libpcap | <1.9.1 | |
| Debian Debian Linux | =8.0 | |
| Debian Debian Linux | =9.0 | |
| openSUSE Leap | =15.0 | |
| openSUSE Leap | =15.1 | |
| Oracle Communications Operations Monitor | =3.4 | |
| Oracle Communications Operations Monitor | =4.0 | |
| Oracle Communications Operations Monitor | =4.1 | |
| Oracle Communications Operations Monitor | =4.2 | |
| Oracle Communications Operations Monitor | =4.3 | |
| Apple iPadOS | =13.3 | |
| Apple iPhone OS | =13.3 | |
| Apple Mac OS X | >=10.13<10.13.6 | |
| Apple Mac OS X | =10.13.6-security_update_2019-007 | |
| Apple Mac OS X | =10.14.6-security_update_2019-002 | |
| Apple Mac OS X | =10.15.2 | |
| Apple tvOS | =13.3 | |
| Apple watchOS | =6.1.1 | |
| Canonical Ubuntu Linux | =12.04 | |
| Canonical Ubuntu Linux | =14.04 | |
| Canonical Ubuntu Linux | =16.04 | |
| Canonical Ubuntu Linux | =18.04 | |
| Canonical Ubuntu Linux | =19.04 | |
| Fedoraproject Fedora | =29 | |
| Fedoraproject Fedora | =30 | |
| Fedoraproject Fedora | =31 | |
| ubuntu/libpcap | <1.8.1-6ubuntu1.18.04.1 | 1.8.1-6ubuntu1.18.04.1 |
| ubuntu/libpcap | <1.8.1-6ubuntu1.19.04.1 | 1.8.1-6ubuntu1.19.04.1 |
| ubuntu/libpcap | <1.5.3-2ubuntu0.1 | 1.5.3-2ubuntu0.1 |
| ubuntu/libpcap | <1.9.1-1 | 1.9.1-1 |
| ubuntu/libpcap | <1.7.4-2ubuntu0.1 | 1.7.4-2ubuntu0.1 |
| Apple tvOS | <13.3 | 13.3 |
| Apple watchOS | <6.1.1 | 6.1.1 |
| debian/libpcap | 1.8.1-6+deb10u1 1.10.0-2 1.10.3-1 1.10.4-4 | |
| Apple iOS | <13.3 | 13.3 |
| Apple iPadOS | <13.3 | 13.3 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://support.apple.com/en-us/HT210785 (Advisory)
- https://support.apple.com/en-us/HT210789 (Advisory)
- https://support.apple.com/en-us/HT210790 (Advisory)
- https://github.com/the-tcpdump-group/libpcap/blob/libpcap-1.9/CHANGES
- https://github.com/the-tcpdump-group/libpcap/commit/87d6bef033062f969e70fa40c43dfd945d5a20ab
- https://github.com/the-tcpdump-group/libpcap/commit/a5a36d9e82dde7265e38fe1f87b7f11c461c29f6
- https://www.tcpdump.org/public-cve-list.txt
- http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00052.html
- http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00051.html
- https://lists.debian.org/debian-lts-announce/2019/10/msg00031.html
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UZTIPUWABYUE5KQOLCKAW65AUUSB7QO6/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GBIEKWLNIR62KZ5GA7EDXZS52HU6OE5F/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5P5K3DQ4TFSZBDB3XN4CZNJNQ3UIF3D3/
- https://support.apple.com/kb/HT210788
- https://usn.ubuntu.com/4221-1/
- https://seclists.org/bugtraq/2019/Dec/23
- http://seclists.org/fulldisclosure/2019/Dec/26
- https://usn.ubuntu.com/4221-2/
- https://support.apple.com/kb/HT210785
- https://support.apple.com/kb/HT210789
- https://support.apple.com/kb/HT210790
- https://www.oracle.com/security-alerts/cpuapr2020.html
- https://lists.debian.org/debian-lts-announce/2021/12/msg00014.html
- https://launchpad.net/bugs/cve/CVE-2019-15165
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5P5K3DQ4TFSZBDB3XN4CZNJNQ3UIF3D3/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GBIEKWLNIR62KZ5GA7EDXZS52HU6OE5F/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UZTIPUWABYUE5KQOLCKAW65AUUSB7QO6/
- https://security-tracker.debian.org/tracker/CVE-2019-15165
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15165
- https://www.tcpdump.org/libpcap-changes.txt
- http://www.tcpdump.org/public-cve-list.txt
- https://ubuntu.com/security/notices/USN-4221-1
- https://ubuntu.com/security/notices/USN-4221-2
- https://nvd.nist.gov/vuln/detail/CVE-2019-15165
- https://ubuntu.com/security/CVE-2019-15165
Parent vulnerabilities
(Appears in the following advisories)
Peer vulnerabilities
(Found alongside the following vulnerabilities)
Frequently Asked Questions
What is the vulnerability ID of this issue?
The vulnerability ID is CVE-2019-15165.
What is the severity level of CVE-2019-15165?
The severity level of CVE-2019-15165 is medium with a score of 5.3.
Which software is affected by CVE-2019-15165?
The affected software includes Tcpdump Libpcap, Debian Debian Linux, openSUSE Leap, Oracle Communications Operations Monitor, Apple iPadOS, Apple iPhone OS, Apple Mac OS X, Apple tvOS, Apple watchOS, Canonical Ubuntu Linux, and Fedoraproject Fedora.
How can I fix CVE-2019-15165?
To fix CVE-2019-15165, update to libpcap version 1.9.1 or newer.
Where can I find more information about CVE-2019-15165?
You can find more information about CVE-2019-15165 at the following references: [Reference 1](https://support.apple.com/en-us/HT210789), [Reference 2](https://support.apple.com/en-us/HT210785), [Reference 3](https://support.apple.com/en-us/HT210790).
- agent/author
- agent/description
- agent/event
- agent/first-publish-date
- agent/last-modified-date
- agent/references
- agent/remedy
- agent/severity
- agent/softwarecombine
- agent/tags
- agent/type
- agent/weakness
- collector/apple-support
- alias/CVE-2019-15162
- alias/CVE-2019-15163
- alias/CVE-2019-15164
- alias/CVE-2019-15165
- agent/software-canonical-lookup-request
- collector/launchpad-cve
- source/Launchpad
- collector/nvd-cve
- source/NVD
- agent/software-canonical-lookup
- collector/nvd-index
- collector/security-tracker-debian
- source/Debian
- collector/usn-cve
- source/Ubuntu
- vendor/apple
- canonical/apple ios
- canonical/apple ipados
- canonical/apple watchos
- canonical/apple tvos
- vendor/tcpdump
- canonical/tcpdump libpcap
- vendor/debian
- canonical/debian debian linux
- version/debian debian linux/8.0
- version/debian debian linux/9.0
- vendor/opensuse
- canonical/opensuse leap
- version/opensuse leap/15.0
- version/opensuse leap/15.1
- vendor/oracle
- canonical/oracle communications operations monitor
- version/oracle communications operations monitor/3.4
- version/oracle communications operations monitor/4.0
- version/oracle communications operations monitor/4.1
- version/oracle communications operations monitor/4.2
- version/oracle communications operations monitor/4.3
- version/apple ipados/13.3
- canonical/apple iphone os
- version/apple iphone os/13.3
- canonical/apple mac os x
- version/apple mac os x/10.13
- version/apple mac os x/10.13.6-security_update_2019-007
- version/apple mac os x/10.14.6-security_update_2019-002
- version/apple mac os x/10.15.2
- version/apple tvos/13.3
- version/apple watchos/6.1.1
- vendor/canonical
- canonical/canonical ubuntu linux
- version/canonical ubuntu linux/12.04
- version/canonical ubuntu linux/14.04
- version/canonical ubuntu linux/16.04
- version/canonical ubuntu linux/18.04
- version/canonical ubuntu linux/19.04
- vendor/fedoraproject
- canonical/fedoraproject fedora
- version/fedoraproject fedora/29
- version/fedoraproject fedora/30
- version/fedoraproject fedora/31
- package-manager/debian
- package-manager/ubuntu