CVE-2015-0261

EPSS 1.4%

tcpdump - security update

發布日:2015/3/24修改日:2026/4/28

描述

Integer signedness error in the mobility_opt_print function in the IPv6 mobility printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (out-of-bounds read and crash) or possibly execute arbitrary code via a negative length value.

受影響套件(3)

Debian/tcpdumpfrom 0, < 4.6.2-4
Debian/tcpdumpfrom 0, < 4.1.1-1+deb6u2
Debian/tcpdumpfrom 0, < 4.3.0-1+deb7u2

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2015-0261