CVE-2023-1801

MEDIUM

tcpdump <4.99.3 - Buffer Overflow

Title source: llm

Description

The SMB protocol decoder in tcpdump version 4.99.3 can perform an out-of-bounds write when decoding a crafted network packet.

References (7)

[Patch] https://github.com/the-tcpdump-group/tcpdump/commit/03c037bbd75588beba3ee09f26d17783d21e30bc

[Patch] https://github.com/the-tcpdump-group/tcpdump/commit/7578e1c04ee280dda50c4c2813e7d55f539c6501

View Patch ZIP pw:eip

[Vendor Advisory] https://support.apple.com/kb/HT213844

[Vendor Advisory] https://support.apple.com/kb/HT213845

[Mailing List, Third Party Advisory] https://lists.fedoraproject.org/archives/list/[email protected]/message/KOA2BJFERAC3VRQIRHJOWN4HZY4ZA7CH/

[Mailing List, Third Party Advisory] https://lists.fedoraproject.org/archives/list/[email protected]/message/WYL5DEVHRJYF2CM5LTCZKEYFYDZAIZSN/

[Mailing List, Third Party Advisory] https://lists.fedoraproject.org/archives/list/[email protected]/message/ZLLZCG23MU6O4QOG2CX3DLEL3YXP6LAI/

Scores

CVSS v3 6.5

EPSS 0.0007

EPSS Percentile 21.9%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Classification

CWE

CWE-787

Status published

Affected Products (1)

tcpdump/tcpdump

Timeline

Published Apr 07, 2023

Tracked Since Feb 18, 2026