CVE-2017-12898
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2017-12898
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2017-12898.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2017-12898
- Downstream
- Related
- Published
- 2017-09-14T06:29:00Z
- Modified
- 2025-10-15T08:45:09.019289Z
- Severity
-
- 9.8 (Critical) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- [none]
- Details
-
The NFS parser in tcpdump before 4.9.2 has a buffer over-read in print-nfs.c:interp_reply().
- References
-
- http://www.debian.org/security/2017/dsa-3971
- http://www.tcpdump.org/tcpdump-changes.txt
- https://access.redhat.com/errata/RHEA-2018:0705
- https://github.com/the-tcpdump-group/tcpdump/commit/19d25dd8781620cd41bf178a5e2e27fc1cf242d0
- https://security.gentoo.org/glsa/201709-23
- http://www.securitytracker.com/id/1039307
- https://support.apple.com/HT208221
Affected packages
Git / github.com/the-tcpdump-group/tcpdump
Affected ranges
- Type
- GIT
- Repo
- https://github.com/the-tcpdump-group/tcpdump
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixed
Affected versions
tcpdump-3.*
tcpdump-3.5.1
tcpdump-3.6.1
tcpdump-3.7.1
tcpdump-3.8-bp
tcpdump-4.*
tcpdump-4.5.0
tcpdump-4.6.0
tcpdump-4.6.0-bp
tcpdump-4.7.0-bp
tcpdump-4.9.0-bp
Database specific
vanir_signatures
[
{
"signature_type": "Function",
"deprecated": false,
"source": "https://github.com/the-tcpdump-group/tcpdump/commit/19d25dd8781620cd41bf178a5e2e27fc1cf242d0",
"signature_version": "v1",
"target": {
"function": "interp_reply",
"file": "print-nfs.c"
},
"digest": {
"function_hash": "21139753489106957517658775015852748517",
"length": 6025.0
},
"id": "CVE-2017-12898-3b7fb6ba"
},
{
"signature_type": "Line",
"deprecated": false,
"source": "https://github.com/the-tcpdump-group/tcpdump/commit/19d25dd8781620cd41bf178a5e2e27fc1cf242d0",
"signature_version": "v1",
"target": {
"file": "print-nfs.c"
},
"digest": {
"threshold": 0.9,
"line_hashes": [
"127317313442346275295559882146119751530",
"241600520516935403415984608546970019327",
"338460553449233992501667963972015525178",
"291450807806231055860040681408419903127",
"181955914805768374336236640425101097071",
"171812410143117632131877592102150396256",
"284922431346734264084003622471675639298",
"336279715126082732432462901174805324910",
"100537490746767659162768433067530264292",
"173074534873199891007016609138239876167",
"273538727003751144552699383338196417592",
"110909602020273231411399147542526417472",
"61447531782435817624936174153299134424",
"205727100996738664689732567831026741968",
"307849859578792554650880223011387369545",
"162123200413621187049531445205972443563",
"62779088341144342744345596034064662379",
"318923542741852975490231070271089407560",
"82866521657533455590935159960550164456",
"161864823414551872016658482410911905306",
"255962727132895016477594354117840529912",
"137564491442497949459508997510001631156",
"308064832752934556879751117834163660362",
"57011675749235659288422021745011681240",
"239760975085795890523621878657639655761",
"100476854254657696201830610023167625462",
"245336150115324014049989904668583701023"
]
},
"id": "CVE-2017-12898-41b42b1e"
},
{
"signature_type": "Function",
"deprecated": false,
"source": "https://github.com/the-tcpdump-group/tcpdump/commit/19d25dd8781620cd41bf178a5e2e27fc1cf242d0",
"signature_version": "v1",
"target": {
"function": "nfsreq_print_noaddr",
"file": "print-nfs.c"
},
"digest": {
"function_hash": "157000007934667414398744259784281522189",
"length": 6090.0
},
"id": "CVE-2017-12898-71049415"
},
{
"signature_type": "Function",
"deprecated": false,
"source": "https://github.com/the-tcpdump-group/tcpdump/commit/19d25dd8781620cd41bf178a5e2e27fc1cf242d0",
"signature_version": "v1",
"target": {
"function": "parserep",
"file": "print-nfs.c"
},
"digest": {
"function_hash": "70867151185073264795170215056074031466",
"length": 728.0
},
"id": "CVE-2017-12898-e420d719"
}
]