CVE-2017-12893

Published: 13 September 2017

The SMB/CIFS parser in tcpdump before 4.9.2 has a buffer over-read in smbutil.c:name_len().

Priority

CVSS 3 base score: 9.8

Package	Release	Status
tcpdump Launchpad, Ubuntu, Debian	upstream	Released (4.9.2-1)
	precise	Released (4.9.2-0ubuntu0.12.04.1)
	trusty	Released (4.9.2-0ubuntu0.14.04.1)
	xenial	Released (4.9.2-0ubuntu0.16.04.1)
	zesty	Released (4.9.2-0ubuntu0.17.04.2)

Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.