CVE-2017-12896

Published: Sep 14, 2017
Updated: Apr 13, 2023
CVE: <a href="https://nvd.nist.gov/vuln/detail/CVE-2017-12896" target="_blank" rel="noopener"> CVE-2017-12896
Severity: Critical
Exploit:

The ISAKMP parser in tcpdump before 4.9.2 has a buffer over-read in print-isakmp.c:isakmp_rfc3948_print().

CVSS v3:

CVSS v2:

CWEs:

Software	From	Fixed in
tcpdump / tcpdump	-	4.9.1.x
redhat / enterprise_linux_desktop	7.0	7.0.x
redhat / enterprise_linux_server	7.0	7.0.x
debian / debian_linux	9.0	9.0.x
debian / debian_linux	10.0	10.0.x
redhat / enterprise_linux_server_aus	7.6	7.6.x
redhat / enterprise_linux_server_aus	7.7	7.7.x