- Vulnerability/
- USN-4252-2
USN-4252-2: tcpdump vulnerabilities
First published: Mon Jan 27 2020(Updated: )
USN-4252-1 fixed several vulnerabilities in tcpdump. This update provides the corresponding update for Ubuntu 12.04 ESM and Ubuntu 14.04 ESM. Original advisory details: Multiple security issues were discovered in tcpdump. A remote attacker could use these issues to cause tcpdump to crash, resulting in a denial of service, or possibly execute arbitrary code.
| Affected Software | Affected Version | How to fix |
|---|---|---|
| All of | ||
| ubuntu/tcpdump | <4.9.3-0ubuntu0.14.04.1+esm1 | 4.9.3-0ubuntu0.14.04.1+esm1 |
| =14.04 | ||
| All of | ||
| ubuntu/tcpdump | <4.9.3-0ubuntu0.12.04.1 | 4.9.3-0ubuntu0.12.04.1 |
| =12.04 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://ubuntu.com/security/CVE-2017-16808
- https://ubuntu.com/security/CVE-2018-10103
- https://ubuntu.com/security/CVE-2018-10105
- https://ubuntu.com/security/CVE-2018-14461
- https://ubuntu.com/security/CVE-2018-14462
- https://ubuntu.com/security/CVE-2018-14463
- https://ubuntu.com/security/CVE-2018-14464
- https://ubuntu.com/security/CVE-2018-14465
- https://ubuntu.com/security/CVE-2018-14466
- https://ubuntu.com/security/CVE-2018-14467
- https://ubuntu.com/security/CVE-2018-14468
- https://ubuntu.com/security/CVE-2018-14469
- https://ubuntu.com/security/CVE-2018-14470
- https://ubuntu.com/security/CVE-2018-14879
- https://ubuntu.com/security/CVE-2018-14880
- https://ubuntu.com/security/CVE-2018-14881
- https://ubuntu.com/security/CVE-2018-14882
- https://ubuntu.com/security/CVE-2018-16227
- https://ubuntu.com/security/CVE-2018-16228
- https://ubuntu.com/security/CVE-2018-16229
- https://ubuntu.com/security/CVE-2018-16230
- https://ubuntu.com/security/CVE-2018-16300
- https://ubuntu.com/security/CVE-2018-16451
- https://ubuntu.com/security/CVE-2018-16452
- https://ubuntu.com/security/CVE-2018-19519
- https://ubuntu.com/security/CVE-2019-1010220
- https://ubuntu.com/security/CVE-2019-15166
- https://ubuntu.com/security/CVE-2019-15167
- https://ubuntu.com/security/notices/USN-4252-1
- https://launchpad.net/ubuntu/+source/tcpdump/4.9.3-0ubuntu0.14.04.1+esm1
- https://launchpad.net/ubuntu/+source/tcpdump/4.9.3-0ubuntu0.12.04.1
- https://ubuntu.com/security/notices/USN-4252-2 (Advisory)
Child vulnerabilities
(Contains the following vulnerabilities)
- CVE-2017-16808
- CVE-2018-10103
- CVE-2018-10105
- CVE-2018-14461
- CVE-2018-14462
- CVE-2018-14463
- CVE-2018-14464
- CVE-2018-14465
- CVE-2018-14466
- CVE-2018-14467
- CVE-2018-14468
- CVE-2018-14469
- CVE-2018-14470
- CVE-2018-14879
- CVE-2018-14880
- CVE-2018-14881
- CVE-2018-14882
- CVE-2018-16227
- CVE-2018-16228
- CVE-2018-16229
- CVE-2018-16230
- CVE-2018-16300
- CVE-2018-16451
- CVE-2018-16452
- CVE-2018-19519
- CVE-2019-1010220
- CVE-2019-15166
- CVE-2019-15167
Frequently Asked Questions
What is the vulnerability ID for this update?
The vulnerability ID for this update is USN-4252-2.
What is tcpdump?
tcpdump is a powerful command-line packet analyzer.
What are the affected versions of Ubuntu?
Ubuntu 12.04 and Ubuntu 14.04 are affected.
What is the severity of this vulnerability?
The severity of this vulnerability is not specified in the description.
How do I fix this vulnerability?
To fix this vulnerability, update tcpdump to version 4.9.3-0ubuntu0.14.04.1+esm1 for Ubuntu 14.04, and version 4.9.3-0ubuntu0.12.04.1 for Ubuntu 12.04.
- agent/description
- agent/event
- agent/first-publish-date
- agent/last-modified-date
- agent/references
- agent/severity
- agent/softwarecombine
- agent/tags
- agent/title
- agent/type
- collector/usn
- source/Ubuntu
- anchor-related/USN-4252-1
- agent/software-canonical-lookup
- package-manager/ubuntu
- vendor/ubuntu
- canonical/ubuntu ubuntu
- version/ubuntu ubuntu/14.04
- version/ubuntu ubuntu/12.04