Re: [tcpdump-workers] CVE-2018-19519 ("a stack-based buffer over-read exists in the print_prefix function of print-hncp.c")

On Wed, 20 Feb 2019 08:46:08 + Thomas De Schampheleire wrote > Hello, > > I would like to inquire about the status of CVE-2018-19519 [1] which > was reported end of 2018 but for which no patch seems to be applied in > the tcpdump repository. I also see no reference to this i

[tcpdump-workers] CVE-2018-19519 ("a stack-based buffer over-read exists in the print_prefix function of print-hncp.c")

Hello, I would like to inquire about the status of CVE-2018-19519 [1] which was reported end of 2018 but for which no patch seems to be applied in the tcpdump repository. I also see no reference to this issue in the mailing list archives. The issue is described by the reporter Zeng Yingpei at [2]