Launchpad.net

CVE 2007-3798

Integer overflow in print-bgp.c in the BGP dissector in tcpdump 3.9.6 and earlier allows remote attackers to execute arbitrary code via crafted TLVs in a BGP packet, related to an unchecked return value.

See the

CVE page on Mitre.org for more details.

References

CONFIRM: http://bugs.gentoo.org...
MISC: http://www.digit-labs....
BID: 24965
SECTRACK: 1018434
SECUNIA: 26135
SECUNIA: 26168
GENTOO: GLSA-200707-14
SECUNIA: 26223
SECUNIA: 26266
FREEBSD: FreeBSD-SA-07:06
TRUSTIX: 2007-0023
UBUNTU: USN-492-1
SECUNIA: 26231
SECUNIA: 26286
SECUNIA: 26263
DEBIAN: DSA-1353
SECUNIA: 26404
SUSE: SUSE-SR:2007:016
SECUNIA: 26395
SECUNIA: 26521
MANDRIVA: MDKSA-2007:148
REDHAT: RHSA-2007:0368
SECUNIA: 27580
TURBO: TLSA-2007-46
REDHAT: RHSA-2007:0387
CONFIRM: http://docs.info.apple...
APPLE: APPLE-SA-2007-12-17
CERT: TA07-352A
SECUNIA: 28136
VUPEN: ADV-2007-2578
VUPEN: ADV-2007-4238
MISC: http://cvs.tcpdump.org...
SLACKWARE: SSA:2007-230-01
OVAL: oval:org.mitre.oval:de...
BUGTRAQ: 20070720 rPSA-2007-014...

Launchpad.net

CVE 2007-3798

Related bugs

References