Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2014-8769

tcpdump 3.8 through 4.6.2 might allow remote attackers to obtain sensitive information from memory or cause a denial of service (packet loss or segmentation fault) via a crafted Ad hoc On-Demand Distance Vector (AODV) packet, which triggers an out-of-bounds memory access.

Related bugs and status

CVE-2014-8769 (Candidate) is related to these bugs:

Bug #1397558: please merge tcpdump from debian

Summary				In	Importance	Status
	1397558	please merge tcpdump from debian		tcpdump (Ubuntu)	Undecided	Fix Released

Bug #1662177: tcpdump multiple CVEs

Summary				In	Importance	Status
	1662177	tcpdump multiple CVEs		tcpdump (Ubuntu)	Medium	Fix Released

See the

CVE page on Mitre.org for more details.

References

FULLDISC: 20141118 CVE-2014-8769...
MISC: http://packetstormsecu...
BID: 71153
DEBIAN: DSA-3086
UBUNTU: USN-2433-1
SUSE: openSUSE-SU-2015:0284
CONFIRM: http://advisories.mage...
MANDRIVA: MDVSA-2014:240
MANDRIVA: MDVSA-2015:125
CONFIRM: https://support.apple....
APPLE: APPLE-SA-2015-08-13-2
CONFIRM: http://www.oracle.com/...
XF: tcpdump-cve20148769-do...
BUGTRAQ: 20141118 CVE-2014-8769...