{"id":"CVE-2014-9140","details":"Buffer overflow in the ppp_hdlc function in print-ppp.c in tcpdump 4.6.2 and earlier allows remote attackers to cause a denial of service (crash) cia a crafted PPP packet.","modified":"2026-04-16T01:38:17.947100844Z","published":"2014-12-05T16:59:12Z","withdrawn":"2026-01-27T04:13:29.615932Z","related":["SUSE-RU-2015:0335-1","SUSE-SU-2015:0679-1","SUSE-SU-2015:0692-1"],"references":[{"type":"ADVISORY","url":"http://advisories.mageia.org/MGASA-2014-0511.html"},{"type":"ADVISORY","url":"http://www.debian.org/security/2014/dsa-3086"},{"type":"ADVISORY","url":"http://www.debian.org/security/2015/dsa-3193"},{"type":"ADVISORY","url":"http://www.mandriva.com/security/advisories?name=MDVSA-2014:240"},{"type":"ADVISORY","url":"http://www.mandriva.com/security/advisories?name=MDVSA-2015:125"},{"type":"FIX","url":"http://www.ubuntu.com/usn/USN-2433-1"},{"type":"EVIDENCE","url":"https://github.com/the-tcpdump-group/tcpdump/commit/0f95d441e4b5d7512cc5c326c8668a120e048eda"},{"type":"WEB","url":"http://lists.apple.com/archives/security-announce/2015/Aug/msg00001.html"},{"type":"WEB","url":"http://lists.opensuse.org/opensuse-updates/2015-03/msg00084.html"},{"type":"WEB","url":"http://packetstormsecurity.com/files/130730/tcpdump-Denial-Of-Service-Code-Execution.html"},{"type":"WEB","url":"http://seclists.org/tcpdump/2014/q4/72"},{"type":"WEB","url":"http://www.securityfocus.com/archive/1/534829/100/0/threaded"},{"type":"WEB","url":"http://www.securityfocus.com/bid/71468"},{"type":"WEB","url":"https://support.apple.com/kb/HT205031"}],"schema_version":"1.7.3"}