The command-line argument parser in tcpdump before 4.9.3 has a buffer overflow in tcpdump.c:getnextfile().
{ "availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro", "ubuntu_priority": "low", "binaries": [ { "binary_version": "4.9.3-0ubuntu0.14.04.1+esm1", "binary_name": "tcpdump" }, { "binary_version": "4.9.3-0ubuntu0.14.04.1+esm1", "binary_name": "tcpdump-dbgsym" } ] }