CVE-2014-9140
EPSS 5.5%
Description
Buffer overflow in the ppp_hdlc function in print-ppp.c in tcpdump 4.6.2 and earlier allows remote attackers to cause a denial of service (crash) cia a crafted PPP packet.
How to fix CVE-2014-9140
To remediate CVE-2014-9140, upgrade the affected package to a fixed version below.
- Debian/tcpdump—upgrade to 4.6.2-3 or later
Is CVE-2014-9140 being exploited?
Moderate — EPSS is 5.5%. Track this CVE but it's not at the top of the prioritisation list.
Affected packages (1)
- from 0, < 4.6.2-3