CVE-2017-5485 log

Source
Severity Critical
Remote Yes
Type Arbitrary code execution
Description
The ISO CLNS parser in tcpdump before 4.9.0 has a buffer overflow in addrtoname.c:lookup_nsap().
Group Package Affected Fixed Severity Status Ticket
AVG-161 tcpdump 4.8.1-1 4.9.0-1 Critical Fixed
Date Advisory Group Package Severity Description
02 Feb 2017 ASA-201702-1 AVG-161 tcpdump Critical arbitrary code execution
References
https://github.com/the-tcpdump-group/tcpdump/commit/2817174698bcd5371ff7fbc9d50b5241dd0130bd
https://github.com/the-tcpdump-group/tcpdump/commit/f152c1268f28fc84d15d364b742f500e12374b33
https://github.com/the-tcpdump-group/tcpdump/commit/777edc563aacdaff66a0b829cecd2ccb09a10404