The RADIUS decoder in tcpdump 3.6.2 and earlier allows remote attackers to cause a denial of service (crash) via an invalid RADIUS packet with a header length field of 0, which causes tcpdump to generate data within an infinite loop.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Tcpdump | Lbl | 3.4 (including) | 3.4 (including) |
Tcpdump | Lbl | 3.4a6 (including) | 3.4a6 (including) |
Tcpdump | Lbl | 3.5 (including) | 3.5 (including) |
Tcpdump | Lbl | 3.5.2 (including) | 3.5.2 (including) |
Tcpdump | Lbl | 3.6.2 (including) | 3.6.2 (including) |
Red Hat Enterprise Linux AS (Advanced Server) version 2.1 | RedHat | * | |
Red Hat Linux 7.1 | RedHat | * | |
Red Hat Linux 7.1 | RedHat | * | |
Red Hat Linux 7.2 | RedHat | * | |
Red Hat Linux 7.3 | RedHat | * | |
Red Hat Linux 8.0 | RedHat | * | |
Red Hat Linux Advanced Workstation 2.1 | RedHat | * |