CVE-2015-2153
EPSS 11.3%
Description
The rpki_rtr_pdu_print function in print-rpki-rtr.c in the TCP printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (out-of-bounds read or write and crash) via a crafted header length in an RPKI-RTR Protocol Data Unit (PDU).
How to fix CVE-2015-2153
To remediate CVE-2015-2153, upgrade the affected package to a fixed version below.
- Debian/tcpdump—upgrade to 4.6.2-4 or later
Is CVE-2015-2153 being exploited?
Moderate — EPSS is 11.3%. Track this CVE but it's not at the top of the prioritisation list.
Affected packages (1)
- from 0, < 4.6.2-4