1
PublicDateAtUSN: 2017-09-13
2
Candidate: CVE-2017-13013
5
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13013
6
https://usn.ubuntu.com/usn/usn-3415-1
7
https://usn.ubuntu.com/usn/usn-3415-2
9
The ARP parser in tcpdump before 4.9.2 has a buffer over-read in
10
print-arp.c, several functions.
15
Discovered-by: Bhargava Shastry
19
upstream: https://github.com/the-tcpdump-group/tcpdump/commit/13ab8d18617d616c7d343530f8a842e7143fb5cc
20
upstream_tcpdump: released (4.9.2-1)
21
precise/esm_tcpdump: released (4.9.2-0ubuntu0.12.04.1)
22
trusty_tcpdump: released (4.9.2-0ubuntu0.14.04.1)
23
vivid/ubuntu-core_tcpdump: DNE
24
xenial_tcpdump: released (4.9.2-0ubuntu0.16.04.1)
25
zesty_tcpdump: released (4.9.2-0ubuntu0.17.04.2)
26
devel_tcpdump: not-affected (4.9.2-1)