Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2014-8768

Multiple Integer underflows in the geonet_print function in tcpdump 4.5.0 through 4.6.2, when in verbose mode, allow remote attackers to cause a denial of service (segmentation fault and crash) via a crafted length value in a Geonet frame.

Related bugs and status

CVE-2014-8768 (Candidate) is related to these bugs:

Bug #1397558: please merge tcpdump from debian

Summary				In	Importance	Status
	1397558	please merge tcpdump from debian		tcpdump (Ubuntu)	Undecided	Fix Released

Bug #1662177: tcpdump multiple CVEs

Summary				In	Importance	Status
	1662177	tcpdump multiple CVEs		tcpdump (Ubuntu)	Medium	Fix Released

See the

CVE page on Mitre.org for more details.

References

FULLDISC: 20141118 CVE-2014-8768...
MISC: http://packetstormsecu...
BID: 71155
UBUNTU: USN-2433-1
EXPLOIT-DB: 35359
SUSE: openSUSE-SU-2015:0284
CONFIRM: http://www.oracle.com/...
XF: tpcdump-cve20148768-do...
BUGTRAQ: 20141118 CVE-2014-8768...