Bug 1490571 (CVE-2017-13004)
Summary: | CVE-2017-13004 tcpdump: Buffer over-read in print-juniper.c:juniper_parse_header() in Juniper protocols parser | ||
---|---|---|---|
Product: | [Other] Security Response | Reporter: | Adam Mariš <amaris> |
Component: | vulnerability | Assignee: | Red Hat Product Security <security-response-team> |
Status: | CLOSED WONTFIX | QA Contact: | |
Severity: | low | Docs Contact: | |
Priority: | low | ||
Version: | unspecified | CC: | jsynacek, luhliari, mruprich, msehnout, msekleta, mudongliangabcd, security-response-team, thozza |
Target Milestone: | --- | Keywords: | Security |
Target Release: | --- | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | |||
Fixed In Version: | tcpdump 4.9.2 | Doc Type: | If docs needed, set a value |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2017-09-13 03:47:11 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: | |||
Bug Depends On: | |||
Bug Blocks: | 1490633 |
Description
Adam Mariš
2017-09-11 21:51:28 UTC
Acknowledgments: Name: the Tcpdump project One external reference should be added : https://github.com/the-tcpdump-group/tcpdump/commit/b534e304568585707c4a92422aeca25cf908ff02#diff-67c6ce093edba0afa3de6b2a04cd2cce When we do fuzzing, we generate one simple testcase which makes AddressSanitizer to detect buffer overflow in line 1318 of print-juniper.c (https://github.com/the-tcpdump-group/tcpdump/commit/b534e304568585707c4a92422aeca25cf908ff02#diff-67c6ce093edba0afa3de6b2a04cd2cceR1318) Sorry for the spam. I mixed it with CVE-2017-12993(https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12993) This issue was addressed in Red Hat Enterprise Linux 7 via RHEA-2018:0705, which rebased tcpdump to 4.9.2: https://access.redhat.com/errata/RHEA-2018:0705 |