TCPDUMP 4.9.3 release: Fix buffer overflow/overread vulnerabilities

TCPDUMP can be the network to send the packet “header” completely intercepted to provide analysis. It supports filtering for network layers, protocols, hosts, networks, or ports, and provides logical statements such as, or, not, to help you remove unwanted messages. TCPDUMP is a free network analysis tool, in particular, it provides the source code, open the interface, so have a strong scalability, for network maintenance and intruders are very useful tool.

TCPDUMP 4.9.3 was released.

Fix buffer overflow/overread vulnerabilities:
CVE-2017-16808 (AoE)
CVE-2018-14468 (FrameRelay)
CVE-2018-14469 (IKEv1)
CVE-2018-14470 (BABEL)
CVE-2018-14466 (AFS/RX)
CVE-2018-14461 (LDP)
CVE-2018-14462 (ICMP)
CVE-2018-14465 (RSVP)
CVE-2018-14881 (BGP)
CVE-2018-14464 (LMP)
CVE-2018-14463 (VRRP)
CVE-2018-14467 (BGP)
CVE-2018-10103 (SMB – partially fixed, but SMB printing disabled)
CVE-2018-10105 (SMB – too unreliably reproduced, SMB printing disabled)
CVE-2018-14880 (OSPF6)
CVE-2018-16451 (SMB)
CVE-2018-14882 (RPL)
CVE-2018-16227 (802.11)
CVE-2018-16229 (DCCP)
CVE-2018-16301 (was fixed in libpcap)
CVE-2018-16230 (BGP)
CVE-2018-16452 (SMB)
CVE-2018-16300 (BGP)
CVE-2018-16228 (HNCP)
CVE-2019-15166 (LMP)
CVE-2019-15167 (VRRP)
Fix for cmdline argument/local issues:
CVE-2018-14879 (tcpdump -V)

Download