tcpdump 3.8.3 and earlier allows remote attackers to cause a denial of service (infinite loop) via a crafted (1) BGP packet, which is not properly handled by RT_ROUTING_INFO, or (2) LDP packet, which is not properly handled by the ldp_print function.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Tcpdump | Lbl | * | 3.8.3 (including) |
Red Hat Enterprise Linux 3 | RedHat | tcpdump-14:3.7.2-7.E3.5 | * |
Red Hat Enterprise Linux 4 | RedHat | tcpdump-14:3.8.2-9.RHEL4 | * |
Tcpdump | Ubuntu | dapper | * |
Tcpdump | Ubuntu | devel | * |
Tcpdump | Ubuntu | edgy | * |
Tcpdump | Ubuntu | feisty | * |