[3.5] tcpdump: heap-based buffer over-read and application crash (CVE-2017-11108)
tcpdump 4.9.0 allows remote attackers to cause a denial of service
(heap-based buffer over-read and application crash) via crafted packet
data.
The crash occurs in the EXTRACT_16BITS function, called from the
stp_print function for the Spanning Tree Protocol.
Fixed in:
Tcpdump 4.9.1
References:
http://www.tcpdump.org/tcpdump-changes.txt
(from redmine: issue id 7635, created on 2017-08-07, closed on 2017-08-07)
- Relations:
- parent #7633 (closed)
- Changesets:
- Revision d663ed83 by Francesco Colista on 2017-08-07T10:17:00Z:
main/tcpdump: security update to 4.9.1. Fixes #7635