Vulnerability CVE-2018-14880: Information

Description

The OSPFv3 parser in tcpdump before 4.9.3 has a buffer over-read in print-ospf6.c:ospf6_print_lshdr().

Severity: HIGH (7.5) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

URL: https://nvd.nist.gov/vuln/detail/CVE-2018-14880

Published: Oct. 3, 2019

Modified: Nov. 7, 2023

Error type identifier: CWE-125

Fixed packages

Package name	Branch	Fixed in version	Version from repository	Errata ID	Task #	State
tcpdump	sisyphus	4.9.3-alt1	4.99.4-alt1	ALT-PU-2019-3120-1	239373	Fixed
tcpdump	p10	4.9.3-alt1	4.9.3-alt2	ALT-PU-2019-3120-1	239373	Fixed
tcpdump	p9	4.9.3-alt2	4.9.3-alt2	ALT-PU-2020-3563-1	263886	Fixed
tcpdump	c10f1	4.9.3-alt1	4.9.3-alt2	ALT-PU-2019-3120-1	239373	Fixed
tcpdump	c9f2	4.9.3-alt2	4.9.3-alt2	ALT-PU-2021-1433-1	267221	Fixed
tcpdump	p11	4.9.3-alt1	4.99.4-alt1	ALT-PU-2019-3120-1	239373	Fixed

References to Advisories, Solutions, and Tools

Hyperlink	Resource
https://github.com/the-tcpdump-group/tcpdump/blob/tcpdump-4.9/CHANGES	Release Notes Third Party Advisory
https://github.com/the-tcpdump-group/tcpdump/commit/e01c9bf76740802025c9328901b55ee4a0c49ed6	Patch Third Party Advisory
[debian-lts-announce] 20191011 [SECURITY] [DLA 1955-1] tcpdump security update	Third Party Advisory
openSUSE-SU-2019:2348	Third Party Advisory
openSUSE-SU-2019:2344	Third Party Advisory
20191021 [SECURITY] [DSA 4547-1] tcpdump security update	Mailing List Third Party Advisory
DSA-4547	Third Party Advisory
https://support.apple.com/kb/HT210788	Third Party Advisory
20191211 APPLE-SA-2019-12-10-3 macOS Catalina 10.15.2, Security Update 2019-002 Mojave, Security Update 2019-007 High Sierra	Mailing List Third Party Advisory
20191213 APPLE-SA-2019-12-10-3 macOS Catalina 10.15.2, Security Update 2019-002 Mojave, Security Update 2019-007 High Sierra	Mailing List Third Party Advisory
https://security.netapp.com/advisory/ntap-20200120-0001/
USN-4252-2
USN-4252-1
FEDORA-2019-85d92df70f
FEDORA-2019-d06bc63433
https://support.f5.com/csp/article/K56551263?utm_source=f5support&amp%3Butm_medium=RSS
FEDORA-2019-6db0d5b9d9

Affected configurations:
1. Configuration 1
  cpe:2.3:a:tcpdump:tcpdump:*:*:*:*:*:*:*:*
  End excliding
  4.9.3
  
  Configuration 2
  cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*
  cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
  cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
  cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*
  cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*
  cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*
  cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*
  cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*
  cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*
  cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*
  cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*
  End excliding
  10.15.2
  
  Configuration 3
  cpe:2.3:a:f5:big-iq_centralized_management:*:*:*:*:*:*:*:*
  Start including
  6.0.0
  End including
  6.1.0
  cpe:2.3:a:f5:big-iq_centralized_management:7.0.0:*:*:*:*:*:*:*
  cpe:2.3:a:f5:big-iq_centralized_management:*:*:*:*:*:*:*:*
  Start including
  5.2.0
  End including
  5.4.0
  
  Configuration 4
  cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*
  Start including
  12.1.0
  End including
  12.1.5
  cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*
  Start including
  14.0.0
  End including
  14.1.2
  cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*
  Start including
  12.1.0
  End including
  12.1.5
  cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*
  Start including
  14.0.0
  End including
  14.1.2
  cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*
  Start including
  12.1.0
  End including
  12.1.5
  cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*
  Start including
  14.0.0
  End including
  14.1.2
  cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*
  Start including
  12.1.0
  End including
  12.1.5
  cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*
  Start including
  14.0.0
  End including
  14.1.2
  cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*
  Start including
  12.1.0
  End including
  12.1.5
  cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*
  Start including
  14.0.0
  End including
  14.1.2
  cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*
  Start including
  12.1.0
  End including
  12.1.5
  cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*
  Start including
  14.0.0
  End including
  14.1.2
  cpe:2.3:a:f5:big-ip_edge_gateway:*:*:*:*:*:*:*:*
  Start including
  12.1.0
  End including
  12.1.5
  cpe:2.3:a:f5:big-ip_edge_gateway:*:*:*:*:*:*:*:*
  Start including
  14.0.0
  End including
  14.1.2
  cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*
  Start including
  12.1.0
  End including
  12.1.5
  cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*
  Start including
  14.0.0
  End including
  14.1.2
  cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*
  Start including
  12.1.0
  End including
  12.1.5
  cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*
  Start including
  14.0.0
  End including
  14.1.2
  cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*
  Start including
  12.1.0
  End including
  12.1.5
  cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*
  Start including
  14.0.0
  End including
  14.1.2
  cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*
  Start including
  12.1.0
  End including
  12.1.5
  cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*
  Start including
  14.0.0
  End including
  14.1.2
  cpe:2.3:a:f5:big-ip_webaccelerator:*:*:*:*:*:*:*:*
  Start including
  12.1.0
  End including
  12.1.5
  cpe:2.3:a:f5:big-ip_webaccelerator:*:*:*:*:*:*:*:*
  Start including
  14.0.0
  End including
  14.1.2
  cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*
  Start including
  12.1.0
  End including
  12.1.5
  cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*
  Start including
  14.0.0
  End including
  14.1.2
  cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*
  Start including
  15.0.0
  End including
  15.0.1
  cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*
  Start including
  11.5.2
  End including
  11.6.5
  cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*
  Start including
  11.5.2
  End including
  11.6.5
  cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*
  Start including
  11.5.2
  End including
  11.6.5
  cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*
  Start including
  11.5.2
  End including
  11.6.5
  cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*
  Start including
  11.5.2
  End including
  11.6.5
  cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*
  Start including
  11.5.2
  End including
  11.6.5
  cpe:2.3:a:f5:big-ip_edge_gateway:*:*:*:*:*:*:*:*
  Start including
  11.5.2
  End including
  11.6.5
  cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*
  Start including
  11.5.2
  End including
  11.6.5
  cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*
  Start including
  11.5.2
  End including
  11.6.5
  cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*
  Start including
  11.5.2
  End including
  11.6.5
  cpe:2.3:a:f5:big-ip_webaccelerator:*:*:*:*:*:*:*:*
  Start including
  11.5.2
  End including
  11.6.5
  cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*
  Start including
  11.5.2
  End including
  11.6.5
  cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*
  Start including
  11.5.2
  End including
  11.6.5
  cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*
  Start including
  13.1.0
  End including
  13.1.3
  cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*
  Start including
  15.0.0
  End including
  15.0.1
  cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*
  Start including
  13.1.0
  End including
  13.1.3
  cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*
  Start including
  13.1.0
  End including
  13.1.3
  cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*
  Start including
  13.1.0
  End including
  13.1.3
  cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*
  Start including
  13.1.0
  End including
  13.1.3
  cpe:2.3:a:f5:big-ip_edge_gateway:*:*:*:*:*:*:*:*
  Start including
  13.1.0
  End including
  13.1.3
  cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*
  Start including
  13.1.0
  End including
  13.1.3
  cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*
  Start including
  13.1.0
  End including
  13.1.3
  cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*
  Start including
  13.1.0
  End including
  13.1.3
  cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*
  Start including
  13.1.0
  End including
  13.1.3
  cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*
  Start including
  13.1.0
  End including
  13.1.3
  cpe:2.3:a:f5:big-ip_webaccelerator:*:*:*:*:*:*:*:*
  Start including
  13.1.0
  End including
  13.1.3
  cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*
  Start including
  13.1.0
  End including
  13.1.3
  cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*
  Start including
  15.0.0
  End including
  15.0.1
  cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*
  Start including
  15.0.0
  End including
  15.0.1
  cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*
  Start including
  15.0.0
  End including
  15.0.1
  cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*
  Start including
  15.0.0
  End including
  15.0.1
  cpe:2.3:a:f5:big-ip_edge_gateway:*:*:*:*:*:*:*:*
  Start including
  15.0.0
  End including
  15.0.1
  cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*
  Start including
  15.0.0
  End including
  15.0.1
  cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*
  Start including
  15.0.0
  End including
  15.0.1
  cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*
  Start including
  15.0.0
  End including
  15.0.1
  cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*
  Start including
  15.0.0
  End including
  15.0.1
  cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*
  Start including
  15.0.0
  End including
  15.0.1
  cpe:2.3:a:f5:big-ip_webaccelerator:*:*:*:*:*:*:*:*
  Start including
  15.0.0
  End including
  15.0.1
  
  Configuration 5
  cpe:2.3:a:f5:enterprise_manager:3.1.1:*:*:*:*:*:*:*
  cpe:2.3:a:f5:traffix_signaling_delivery_controller:*:*:*:*:*:*:*:*
  Start including
  5.0.0
  End including
  5.1.0
  cpe:2.3:a:f5:iworkflow:2.3.0:*:*:*:*:*:*:*

Version: v24.5.3

Vulnerability CVE-2018-14880: Information

Description

Fixed packages

References to Advisories, Solutions, and Tools

Configuration 1

Configuration 2

Configuration 3

Configuration 4

Configuration 5