CVE-2015-3138

Published: 28 September 2017

print-wb.c in tcpdump before 4.7.4 allows remote attackers to cause a denial of service (segmentation fault and process crash).

Priority

Medium

CVSS 3 base score: 7.5

Status

Package Release Status
tcpdump
Launchpad, Ubuntu, Debian
Upstream
Released (4.7.4)
Ubuntu 14.04 ESM (Trusty Tahr) Not vulnerable
(4.7.0-4.7.3 only)
Patches:
Upstream: https://github.com/the-tcpdump-group/tcpdump/commit/3ed82f4ed0095768529afc22b923c8f7171fff70

Notes

AuthorNote
sbeattie
introduced in commit
https://github.com/the-tcpdump-group/tcpdump/commit/3a3ec26085461998074b827b112d38e8f3246a86
only affected 4.7.0 - 4.7.3

References