CVE-2016-7930

Name of the Vulnerable Software and Affected Versions tcpdump versions prior to 4.9.0

Description The issue is related to a buffer overflow in the LLC/SNAP parser and the ISO CLNS parser. Specifically, the buffer overflow occurs in the llc print() function in print-llc.c and the clnp print() function in print-isoclns.c. This is caused by improper bounds checking, allowing a remote attacker to overflow a buffer by sending an overly long argument. This could lead to the execution of arbitrary code on the system or cause the application to crash.

Recommendations For versions prior to 4.9.0, update to version 4.9.0 or later to resolve the issue. As a temporary workaround, consider restricting access to the llc print() and clnp print() functions until a patch is available. Avoid using the affected parser functions in the vulnerable API endpoints until the issue is resolved.