Yannick Formaggio

**Name of the Vulnerable Software and Affected Versions** tcpdump versions prior to 4.9.2 **Description** The issue concerns a buffer over-read in the L2TP parser, specifically within the print-l2tp.c file, affecting several functions. This could allow a remote attacker to obtain sensitive information by sending a specially crafted request to exploit the buffer overread memory in the affected component. **Recommendations** For versions prior to 4.9.2, update to version 4.9.2 or later to resolve the issue. As a temporary workaround, consider restricting access to the L2TP parser until the update is applied.

**Name of the Vulnerable Software and Affected Versions** tcpdump versions prior to 4.9.2 **Description** The issue is related to a buffer over-read in the `pktap if print()` function within the print-pktap.c file of the Apple PKTAP parser in tcpdump. This indicates a problem where more data is read from a buffer than it actually contains, potentially leading to information disclosure or crashes. **Recommendations** For versions prior to 4.9.2, update to version 4.9.2 or later to resolve the issue. As a temporary workaround, consider restricting access to the `pktap if print()` function until a patch is available.