1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
|
PublicDateAtUSN: 2014-12-03
Candidate: CVE-2014-9140
PublicDate: 2014-12-05
References:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9140
http://seclists.org/tcpdump/2014/q4/72
http://www.ubuntu.com/usn/usn-2433-1
Description:
Buffer overflow in the ppp_hdlc function in print-ppp.c in tcpdump 4.6.2
and earlier allows remote attackers to cause a denial of service (crash)
cia a crafted PPP packet.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to: mdeslaur
Patches_tcpdump:
upstream: https://github.com/the-tcpdump-group/tcpdump/commit/0f95d441e4b5d7512cc5c326c8668a120e048eda
upstream_tcpdump: released (4.6.2-3)
lucid_tcpdump: released (4.0.0-6ubuntu3.1)
precise_tcpdump: released (4.2.1-1ubuntu2.1)
trusty_tcpdump: released (4.5.1-2ubuntu1.1)
utopic_tcpdump: released (4.6.2-1ubuntu1.1)
devel_tcpdump: not-affected (4.6.2-3ubuntu1)
|