Posted on

tcpdump up to 4.9.1 PPP Parser print-ppp.c print_ccp_config_options() memory corruption

A vulnerability, which was classified as critical, was found in tcpdump up to 4.9.1 (Packet Analyzer Software). Affected is the function print_ccp_config_options() of the file print-ppp.c of the component PPP Parser. Upgrading to version 4.9.2 eliminates this vulnerability. A possible mitigation has been published 1 days after the disclosure of the vulnerability.