{"id":"CVE-2017-13010","details":"The BEEP parser in tcpdump before 4.9.2 has a buffer over-read in print-beep.c:l_strnstart().","modified":"2026-04-16T06:20:01.358054997Z","published":"2017-09-14T06:29:01.637Z","related":["SUSE-SU-2017:2854-1","SUSE-SU-2019:14191-1","openSUSE-SU-2024:11425-1"],"references":[{"type":"WEB","url":"https://support.apple.com/HT208221"},{"type":"WEB","url":"http://www.securitytracker.com/id/1039307"},{"type":"ADVISORY","url":"http://www.debian.org/security/2017/dsa-3971"},{"type":"ADVISORY","url":"http://www.tcpdump.org/tcpdump-changes.txt"},{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHEA-2018:0705"},{"type":"ADVISORY","url":"https://security.gentoo.org/glsa/201709-23"},{"type":"FIX","url":"https://github.com/the-tcpdump-group/tcpdump/commit/877b66b398518d9501513e0860c9f3a8acc70892"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/the-tcpdump-group/tcpdump","events":[{"introduced":"0"},{"last_affected":"993a67c8e648bc8b19881e29a60f41273cfbee7b"},{"fixed":"877b66b398518d9501513e0860c9f3a8acc70892"}],"database_specific":{"versions":[{"introduced":"0"},{"last_affected":"4.9.1"}]}}],"versions":["tcpdump-3.5.1","tcpdump-3.6.1","tcpdump-3.7.1","tcpdump-3.8-bp","tcpdump-4.5.0","tcpdump-4.6.0","tcpdump-4.6.0-bp","tcpdump-4.7.0-bp","tcpdump-4.9.0","tcpdump-4.9.0-bp","tcpdump-4.9.1"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2017-13010.json","vanir_signatures":[{"digest":{"function_hash":"207285540239349240394465329754442467653","length":192},"source":"https://github.com/the-tcpdump-group/tcpdump/commit/877b66b398518d9501513e0860c9f3a8acc70892","id":"CVE-2017-13010-01dd04a0","signature_type":"Function","target":{"file":"print-beep.c","function":"l_strnstart"},"signature_version":"v1","deprecated":false},{"digest":{"function_hash":"18319528767314030585596575250915520060","length":891},"source":"https://github.com/the-tcpdump-group/tcpdump/commit/877b66b398518d9501513e0860c9f3a8acc70892","id":"CVE-2017-13010-5e40feea","signature_type":"Function","deprecated":false,"signature_version":"v1","target":{"file":"print-beep.c","function":"beep_print"}},{"digest":{"line_hashes":["26336984820626114498012253556807418218","113763406892991218794719129492716298854","253093329873824068683217629086520879814","126924745640312284702476670682858122226","156549260600774321942738773987769220435","14051822911556518466407161201379700","170830383850482014174680688889461444864","323468853581896665328536810807796631524","312946124862372373920553882953790593863","315410322836791460522816732005356398676","93865765322317735157121774468855493866","256418364340676441036774306306546388980","208491941528214659497431940712869005501","10451020000599254190922882286183415344","89009383202420024734039964925898840811","95635270321542821322126858873063100927","105304055113651641382685379417453009252","275576787628741021169680003423862155224","89441598859904839241994845034936907725","33495057246013828000022687631753450495","37362777162132200357664982183033493507"],"threshold":0.9},"source":"https://github.com/the-tcpdump-group/tcpdump/commit/877b66b398518d9501513e0860c9f3a8acc70892","id":"CVE-2017-13010-d74623c0","signature_type":"Line","deprecated":false,"signature_version":"v1","target":{"file":"print-beep.c"}}],"vanir_signatures_modified":"2026-04-11T03:56:56Z"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}]}