CVE-2016-7939

Name of the Vulnerable Software and Affected Versions tcpdump versions prior to 4.9.0

Description The issue is related to a buffer overflow in the GRE parser and the ISO CLNS parser in the print-gre.c and print-isoclns.c files, respectively. This is caused by improper bounds checking in multiple functions, including the clnp print() function. A remote attacker could potentially overflow a buffer by sending an overly long argument, leading to arbitrary code execution on the system or causing the application to crash.

Recommendations For versions prior to 4.9.0, update to version 4.9.0 or later to resolve the issue. As a temporary workaround, consider restricting access to the print-gre.c and print-isoclns.c functions until a patch is available. Avoid using the clnp print() function in the affected API endpoint until the issue is resolved.