{"id":"CVE-2014-8767","details":"Integer underflow in the olsr_print function in tcpdump 3.9.6 through 4.6.2, when in verbose mode, allows remote attackers to cause a denial of service (crash) via a crafted length value in an OLSR frame.","modified":"2026-02-04T04:08:33.303363Z","published":"2014-11-20T17:50:04Z","related":["MGASA-2014-0503","SUSE-RU-2015:0335-1","SUSE-SU-2015:0692-1","SUSE-SU-2017:1110-1","openSUSE-SU-2024:10396-1"],"references":[{"type":"ADVISORY","url":"http://advisories.mageia.org/MGASA-2014-0503.html"},{"type":"ADVISORY","url":"http://www.debian.org/security/2014/dsa-3086"},{"type":"ADVISORY","url":"http://www.mandriva.com/security/advisories?name=MDVSA-2014:240"},{"type":"ADVISORY","url":"http://www.mandriva.com/security/advisories?name=MDVSA-2015:125"},{"type":"ADVISORY","url":"http://www.ubuntu.com/usn/USN-2433-1"},{"type":"EVIDENCE","url":"http://packetstormsecurity.com/files/129155/tcpdump-4.6.2-OSLR-Denial-Of-Service.html"},{"type":"EVIDENCE","url":"http://seclists.org/fulldisclosure/2014/Nov/47"},{"type":"EVIDENCE","url":"http://www.securityfocus.com/bid/71150"},{"type":"WEB","url":"http://lists.apple.com/archives/security-announce/2015/Aug/msg00001.html"},{"type":"WEB","url":"http://lists.opensuse.org/opensuse-updates/2015-02/msg00062.html"},{"type":"WEB","url":"http://www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html"},{"type":"WEB","url":"http://www.securityfocus.com/archive/1/534011/100/0/threaded"},{"type":"WEB","url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/98765"},{"type":"WEB","url":"https://support.apple.com/kb/HT205031"}],"schema_version":"1.7.3"}