Download
| Alert*
[3.5] tcpdump: heap-based buffer over-read and application crash (CVE-2017-11108)
tcpdump 4.9.0 allows remote attackers to cause a denial of service via crafted packet data. The crash occurs in the EXTRACT_16BITS function, called from the stp_print function for the Spanning Tree Protocol. Fixed in Tcpdump 4.9.1
|