[Git][security-tracker-team/security-tracker][master] Add CVE-2018-16301/tcpdump

Wed Feb 9 19:57:14 GMT 2022


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
db95568b by Salvatore Bonaccorso at 2022-02-09T20:53:45+01:00
Add CVE-2018-16301/tcpdump

The CVE got restored, see details in
https://github.com/the-tcpdump-group/libpcap/issues/855, while
disputable this is now the fact. Track the fixed version.

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -226387,7 +226387,11 @@ CVE-2018-16303 (PDF-XChange Editor through 7.0.326.1 allows remote attackers to
 CVE-2018-16302 (MediaComm Zip-n-Go before 4.95 has a Buffer Overflow via a crafted fil ...)
 	NOT-FOR-US: MediaComm Zip-n-Go
 CVE-2018-16301
-	REJECTED
+	- tcpdump 4.99.0-1
+	NOTE: https://github.com/the-tcpdump-group/libpcap/issues/855
+	NOTE: https://github.com/the-tcpdump-group/tcpdump/commit/ad7c25bc0decf96dc7768c9e903734d38528b1bd
+	NOTE: https://www.tcpdump.org/public-cve-list.txt
+	NOTE: Fixed along with: https://github.com/the-tcpdump-group/tcpdump/commit/faf8fb70af3a013e5d662b8283dec742fd6b1a77 (tcpdump-4.99-bp)
 CVE-2018-16300 (The BGP parser in tcpdump before 4.9.3 allows stack consumption in pri ...)
 	{DSA-4547-1 DLA-1955-1}
 	- tcpdump 4.9.3-1 (bug #941698)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/db95568bafd18dff8f080322d9ff3a6311fd7988

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/db95568bafd18dff8f080322d9ff3a6311fd7988
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220209/7d002408/attachment.htm>
