Posted on

tcpdump up to 4.9.1 HNCP Parser print-hncp.c dhcpv4_print() memory corruption

A vulnerability classified as critical has been found in tcpdump up to 4.9.1 (Packet Analyzer Software). This affects the function dhcpv4_print() of the file print-hncp.c of the component HNCP Parser. Upgrading to version 4.9.2 eliminates this vulnerability. A possible mitigation has been published 1 days after the disclosure of the vulnerability.