Your submission was sent successfully! Close

CVE-2018-16301

Published: 30 September 2019

The command-line argument parser in tcpdump before 4.99.0 has a buffer overflow in tcpdump.c:read_infile(). To trigger this vulnerability the attacker needs to create a 4GB file on the local filesystem and to specify the file name as the value of the -F command-line argument of tcpdump.

Notes

AuthorNote
mdeslaur
This CVE was incorrectly assigned to libpcap, and then was
incorrectly marked as REJECT, but is now a valid CVE for
tcpdump.
Priority

Low

CVSS 3 base score: 7.8

Status

Package Release Status
tcpdump
Launchpad, Ubuntu, Debian
bionic
Released (4.9.3-0ubuntu0.18.04.2)
focal
Released (4.9.3-4ubuntu0.1)
impish Not vulnerable
(4.99.0-2)
jammy Not vulnerable
(4.99.1-3build1)
precise Ignored
(end of ESM support, was needs-triage)
trusty Needed

upstream
Released (4.99.0)
xenial
Released (4.9.3-0ubuntu0.16.04.1+esm1)
Patches:
upstream: https://github.com/the-tcpdump-group/tcpdump/commit/8ab211a7ec728bb0ad8c766c8eeb12deb0a13b86 (4.9)