Vulnerability CVE-2018-14468: Information

Description

The FRF.16 parser in tcpdump before 4.9.3 has a buffer over-read in print-fr.c:mfr_print().

Severity: HIGH (7.5) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

URL: https://nvd.nist.gov/vuln/detail/CVE-2018-14468

Published: Oct. 3, 2019

Modified: Nov. 7, 2023

Error type identifier: CWE-125

Fixed packages

Package name	Branch	Fixed in version	Version from repository	Errata ID	Task #	State
tcpdump	sisyphus	4.9.3-alt1	4.99.4-alt1	ALT-PU-2019-3120-1	239373	Fixed
tcpdump	p10	4.9.3-alt1	4.9.3-alt2	ALT-PU-2019-3120-1	239373	Fixed
tcpdump	p9	4.9.3-alt2	4.9.3-alt2	ALT-PU-2020-3563-1	263886	Fixed
tcpdump	c10f1	4.9.3-alt1	4.9.3-alt2	ALT-PU-2019-3120-1	239373	Fixed
tcpdump	c9f2	4.9.3-alt2	4.9.3-alt2	ALT-PU-2021-1433-1	267221	Fixed

References to Advisories, Solutions, and Tools

Hyperlink	Resource
https://github.com/the-tcpdump-group/tcpdump/commit/aa3e54f594385ce7e1e319b0c84999e51192578b	Patch Third Party Advisory
https://github.com/the-tcpdump-group/tcpdump/blob/tcpdump-4.9/CHANGES	Release Notes Third Party Advisory
[debian-lts-announce] 20191011 [SECURITY] [DLA 1955-1] tcpdump security update	Third Party Advisory
openSUSE-SU-2019:2348	Third Party Advisory
openSUSE-SU-2019:2344	Third Party Advisory
20191021 [SECURITY] [DSA 4547-1] tcpdump security update	Mailing List Third Party Advisory
DSA-4547	Third Party Advisory
https://support.apple.com/kb/HT210788	Third Party Advisory
20191211 APPLE-SA-2019-12-10-3 macOS Catalina 10.15.2, Security Update 2019-002 Mojave, Security Update 2019-007 High Sierra	Mailing List Third Party Advisory
20191213 APPLE-SA-2019-12-10-3 macOS Catalina 10.15.2, Security Update 2019-002 Mojave, Security Update 2019-007 High Sierra	Mailing List Third Party Advisory
https://security.netapp.com/advisory/ntap-20200120-0001/
USN-4252-2
USN-4252-1
FEDORA-2019-85d92df70f
FEDORA-2019-d06bc63433
FEDORA-2019-6db0d5b9d9
https://support.f5.com/csp/article/K04367730?utm_source=f5support&amp%3Butm_medium=RSS

Affected configurations:
1. Configuration 1
  cpe:2.3:a:tcpdump:tcpdump:*:*:*:*:*:*:*:*
  End excliding
  4.9.3
  
  Configuration 2
  cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*
  cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
  cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
  cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*
  cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*
  cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*
  cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*
  cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*
  cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*
  cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*
  cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*
  End excliding
  10.15.2
  
  Configuration 3
  cpe:2.3:a:f5:big-iq_centralized_management:*:*:*:*:*:*:*:*
  Start including
  6.0.0
  End including
  6.1.0
  cpe:2.3:a:f5:big-iq_centralized_management:7.0.0:*:*:*:*:*:*:*
  cpe:2.3:a:f5:big-iq_centralized_management:*:*:*:*:*:*:*:*
  Start including
  5.2.0
  End including
  5.4.0
  
  Configuration 4
  cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*
  Start including
  12.1.0
  End including
  12.1.5
  cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*
  Start including
  14.0.0
  End including
  14.1.2
  cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*
  Start including
  12.1.0
  End including
  12.1.5
  cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*
  Start including
  14.0.0
  End including
  14.1.2
  cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*
  Start including
  12.1.0
  End including
  12.1.5
  cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*
  Start including
  14.0.0
  End including
  14.1.2
  cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*
  Start including
  12.1.0
  End including
  12.1.5
  cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*
  Start including
  14.0.0
  End including
  14.1.2
  cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*
  Start including
  12.1.0
  End including
  12.1.5
  cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*
  Start including
  14.0.0
  End including
  14.1.2
  cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*
  Start including
  12.1.0
  End including
  12.1.5
  cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*
  Start including
  14.0.0
  End including
  14.1.2
  cpe:2.3:a:f5:big-ip_edge_gateway:*:*:*:*:*:*:*:*
  Start including
  12.1.0
  End including
  12.1.5
  cpe:2.3:a:f5:big-ip_edge_gateway:*:*:*:*:*:*:*:*
  Start including
  14.0.0
  End including
  14.1.2
  cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*
  Start including
  12.1.0
  End including
  12.1.5
  cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*
  Start including
  14.0.0
  End including
  14.1.2
  cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*
  Start including
  12.1.0
  End including
  12.1.5
  cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*
  Start including
  14.0.0
  End including
  14.1.2
  cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*
  Start including
  12.1.0
  End including
  12.1.5
  cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*
  Start including
  14.0.0
  End including
  14.1.2
  cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*
  Start including
  12.1.0
  End including
  12.1.5
  cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*
  Start including
  14.0.0
  End including
  14.1.2
  cpe:2.3:a:f5:big-ip_webaccelerator:*:*:*:*:*:*:*:*
  Start including
  12.1.0
  End including
  12.1.5
  cpe:2.3:a:f5:big-ip_webaccelerator:*:*:*:*:*:*:*:*
  Start including
  14.0.0
  End including
  14.1.2
  cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*
  Start including
  12.1.0
  End including
  12.1.5
  cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*
  Start including
  14.0.0
  End including
  14.1.2
  cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*
  Start including
  15.0.0
  End including
  15.0.1
  cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*
  Start including
  13.1.0
  End including
  13.1.3
  cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*
  Start including
  15.0.0
  End including
  15.0.1
  cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*
  Start including
  13.1.0
  End including
  13.1.3
  cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*
  Start including
  13.1.0
  End including
  13.1.3
  cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*
  Start including
  13.1.0
  End including
  13.1.3
  cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*
  Start including
  13.1.0
  End including
  13.1.3
  cpe:2.3:a:f5:big-ip_edge_gateway:*:*:*:*:*:*:*:*
  Start including
  13.1.0
  End including
  13.1.3
  cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*
  Start including
  13.1.0
  End including
  13.1.3
  cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*
  Start including
  13.1.0
  End including
  13.1.3
  cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*
  Start including
  13.1.0
  End including
  13.1.3
  cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*
  Start including
  13.1.0
  End including
  13.1.3
  cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*
  Start including
  13.1.0
  End including
  13.1.3
  cpe:2.3:a:f5:big-ip_webaccelerator:*:*:*:*:*:*:*:*
  Start including
  13.1.0
  End including
  13.1.3
  cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*
  Start including
  13.1.0
  End including
  13.1.3
  cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*
  Start including
  15.0.0
  End including
  15.0.1
  cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*
  Start including
  15.0.0
  End including
  15.0.1
  cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*
  Start including
  15.0.0
  End including
  15.0.1
  cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*
  Start including
  15.0.0
  End including
  15.0.1
  cpe:2.3:a:f5:big-ip_edge_gateway:*:*:*:*:*:*:*:*
  Start including
  15.0.0
  End including
  15.0.1
  cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*
  Start including
  15.0.0
  End including
  15.0.1
  cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*
  Start including
  15.0.0
  End including
  15.0.1
  cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*
  Start including
  15.0.0
  End including
  15.0.1
  cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*
  Start including
  15.0.0
  End including
  15.0.1
  cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*
  Start including
  15.0.0
  End including
  15.0.1
  cpe:2.3:a:f5:big-ip_webaccelerator:*:*:*:*:*:*:*:*
  Start including
  15.0.0
  End including
  15.0.1
  cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*
  Start including
  11.6.0
  End including
  11.6.5
  cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*
  Start including
  11.6.0
  End including
  11.6.5
  cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*
  Start including
  11.6.0
  End including
  11.6.5
  cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*
  Start including
  11.6.0
  End including
  11.6.5
  cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*
  Start including
  11.6.0
  End including
  11.6.5
  cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*
  Start including
  11.6.0
  End including
  11.6.5
  cpe:2.3:a:f5:big-ip_edge_gateway:*:*:*:*:*:*:*:*
  Start including
  11.6.0
  End including
  11.6.5
  cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*
  Start including
  11.6.0
  End including
  11.6.5
  cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*
  Start including
  11.6.0
  End including
  11.6.5
  cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*
  Start including
  11.6.0
  End including
  11.6.5
  cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*
  Start including
  11.6.0
  End including
  11.6.5
  cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*
  Start including
  11.6.0
  End including
  11.6.5
  cpe:2.3:a:f5:big-ip_webaccelerator:*:*:*:*:*:*:*:*
  Start including
  11.6.0
  End including
  11.6.5
  
  Configuration 5
  cpe:2.3:a:f5:enterprise_manager:3.1.1:*:*:*:*:*:*:*
  cpe:2.3:a:f5:traffix_signaling_delivery_controller:*:*:*:*:*:*:*:*
  Start including
  5.0.0
  End including
  5.1.0
  cpe:2.3:a:f5:iworkflow:2.3.0:*:*:*:*:*:*:*

Version: v24.4.2

Vulnerability CVE-2018-14468: Information

Description

Fixed packages

References to Advisories, Solutions, and Tools

Configuration 1

Configuration 2

Configuration 3

Configuration 4

Configuration 5