CVE-2014-8767

EPSS 6.5%

tcpdump - security update

Published: 11/20/2014Modified: 4/28/2026

Description

Integer underflow in the olsr_print function in tcpdump 3.9.6 through 4.6.2, when in verbose mode, allows remote attackers to cause a denial of service (crash) via a crafted length value in an OLSR frame.

Affected packages (3)

Debian/tcpdumpfrom 0, < 4.6.2-2
Debian/tcpdumpfrom 0, < 4.1.1-1+deb6u1
Debian/tcpdumpfrom 0, < 4.3.0-1+deb7u1

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2014-8767