MNBSD-2025-4: tcpdump DOS

Description

The ppp decapsulator in tcpdump 4.9.3 can be convinced to allocate a large amount of memory. A remote attacker may be able to cause a denial of service.

Affected Versions

tcpdump

Specific versions:

• 2.1.0
• 2.1.1
• 2.2.0
• 2.2.1
• 2.2.2
• 2.2.3
• 2.2.4
• 2.2.5
• 2.2.6
• 2.2.7
• 2.2.8
• 3.0.0
• 3.0.1
• 3.0.2
• 3.1.0
• 3.1.1
• 3.1.2
• 3.1.3
• 3.1.4
• 3.1.5
• 3.2.0
• 3.2.1
• 3.2.2

Recommendations

Update to the 3.2.3 release or greater

References

• https://nvd.nist.gov/vuln/detail/CVE-2020-8037
• http://seclists.org/fulldisclosure/2021/Apr/51
• https://support.apple.com/kb/HT212326
• https://github.com/the-tcpdump-group/tcpdump/commit/32027e199368dad9508965aae8cd8de5b6ab5231

Additional Information

Aliases: CVE-2020-8037

Published: April 04, 2025
Last Modified: April 04, 2025