106098

https://github.com/zyingp/temp/blob/master/tcpdump.md

According to the versions of the tcpdump package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities :

  - In tcpdump 4.9.2, a stack-based buffer over-read exists     in the print_prefix function of print-hncp.c via     crafted packet data because of missing     initialization.(CVE-2018-19519)

  - tcpdump 4.9.2 has a heap-based buffer over-read related     to aoe_print in print-aoe.c and lookup_emem in     addrtoname.c.(CVE-2017-16808)

Note that Tenable Network Security has extracted the preceding description block directly from the EulerOS security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

According to the versions of the tcpdump package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities :

  - tcpdump.org tcpdump 4.9.2 is affected by: CWE-126:
    Buffer Over-read. The impact is: May expose Saved Frame     Pointer, Return Address etc. on stack. The victim must     open a specially crafted pcap file. (CVE-2019-1010220)

  - In tcpdump 4.9.2, a stack-based buffer over-read exists     in the print_prefix function of print-hncp.c via     crafted packet data because of missing     initialization.(CVE-2018-19519)

  - tcpdump 4.9.2 has a heap-based buffer over-read related     to aoe_print in print-aoe.c and lookup_emem in     addrtoname.c.(CVE-2017-16808)

Note that Tenable Network Security has extracted the preceding description block directly from the EulerOS security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

New version 4.9.3, Security fix for CVE-2017-16808, CVE-2018-14468, CVE-2018-14469, CVE-2018-14470, CVE-2018-14466, CVE-2018-14461, CVE-2018-14462, CVE-2018-14465, CVE-2018-14881, CVE-2018-14464, CVE-2018-14463, CVE-2018-14467, CVE-2018-10103, CVE-2018-10105, CVE-2018-14880, CVE-2018-16451, CVE-2018-14882, CVE-2018-16227, CVE-2018-16229, CVE-2018-16301, CVE-2018-16230, CVE-2018-16452, CVE-2018-16300, CVE-2018-16228, CVE-2019-15166, CVE-2019-15167, CVE-2017-16808, CVE-2018-14882, CVE-2018-19519

Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website.
Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

An update of the tcpdump package has been released.

This update for tcpdump fixes the following issues :

Security issues fixed :

  - CVE-2018-19519: Fixed a stack-based buffer over-read in     the print_prefix function (bsc#1117267)

This update was imported from the SUSE:SLE-15:Update update project.

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19519 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19519 Tcpdump is vulnerable to a stack-based buffer overflow, caused by improper bounds checking by the print_prefix function of print-hncp.c. By using a specially-crafted packet data, a remote attacker could overflow a buffer and execute arbitrary code on the system or cause the application to crash.

This update for tcpdump fixes the following issues :

Security issues fixed :

CVE-2018-19519: Fixed a stack-based buffer over-read in the print_prefix function (bsc#1117267)

Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

This update for tcpdump fixes the following security issue :

  - CVE-2018-19519: Fixed a stack-based buffer over-read in     the print_prefix function (bsc#1117267)

This update was imported from the SUSE:SLE-12:Update update project.

ID	Name	Product	Family	Severity
130719	EulerOS 2.0 SP3 : tcpdump (EulerOS-SA-2019-2257)	Nessus	Huawei Local Security Checks	medium
130695	EulerOS 2.0 SP5 : tcpdump (EulerOS-SA-2019-2233)	Nessus	Huawei Local Security Checks	medium
130370	Fedora 31 : 14:tcpdump (2019-6db0d5b9d9)	Nessus	Fedora Local Security Checks	high
130321	Fedora 30 : 14:tcpdump (2019-d06bc63433)	Nessus	Fedora Local Security Checks	high
130308	Fedora 29 : 14:tcpdump (2019-85d92df70f)	Nessus	Fedora Local Security Checks	high
125162	Photon OS 1.0: Tcpdump PHSA-2019-1.0-0218	Nessus	PhotonOS Local Security Checks	medium
123155	openSUSE Security Update : tcpdump (openSUSE-2019-1016)	Nessus	SuSE Local Security Checks	medium
122429	AIX 7.2 TL 3 : tcpdump (IJ12983)	Nessus	AIX Local Security Checks	medium
122428	AIX 7.2 TL 2 : tcpdump (IJ12982)	Nessus	AIX Local Security Checks	medium
122427	AIX 7.2 TL 1 : tcpdump (IJ12981)	Nessus	AIX Local Security Checks	medium
122426	AIX 7.1 TL 5 : tcpdump (IJ12980)	Nessus	AIX Local Security Checks	medium
122425	AIX 7.1 TL 4 : tcpdump (IJ12979)	Nessus	AIX Local Security Checks	medium
120187	SUSE SLED15 / SLES15 Security Update : tcpdump (SUSE-SU-2018:4131-1)	Nessus	SuSE Local Security Checks	medium
119857	openSUSE Security Update : tcpdump (openSUSE-2018-1589)	Nessus	SuSE Local Security Checks	medium
119742	SUSE SLED12 / SLES12 Security Update : tcpdump (SUSE-SU-2018:4149-1)	Nessus	SuSE Local Security Checks	medium
119715	openSUSE Security Update : tcpdump (openSUSE-2018-1559)	Nessus	SuSE Local Security Checks	medium

CVE-2018-19519

Description

References

Details

Risk Information

CVSS v2.0

CVSS v3.0

Vulnerable Software

Configuration 1

Tenable Plugins