CVE-2018-14938
Publication date 4 August 2018
Last updated 24 July 2024
Ubuntu priority
An issue was discovered in wifipcap/wifipcap.cpp in TCPFLOW through 1.5.0-alpha. There is an integer overflow in the function handle_prism during caplen processing. If the caplen is less than 144, one can cause an integer overflow in the function handle_80211, which will result in an out-of-bounds read and may allow access to sensitive memory (or a denial of service).
From the Ubuntu Security Team
It was discovered that tcpflow mishandled certain crafted input, resulting in an integer overflow. An attacker could use this vulnerability to leak sensitive information or cause a denial of service (crash).
Status
| Package | Ubuntu Release | Status |
|---|---|---|
| tcpflow | 22.04 LTS jammy |
Not affected
|
| 20.04 LTS focal |
Not affected
|
|
| 18.04 LTS bionic |
Fixed 1.4.5+repack1-4ubuntu0.18.04.1
|
|
| 16.04 LTS xenial |
Fixed 1.4.5+repack1-1ubuntu0.1
|
|
| 14.04 LTS trusty |
Fixed 1.4.4+repack1-2ubuntu0.1~esm1
|
Get expanded security coverage with Ubuntu Pro
Reduce your average CVE exposure time from 98 days to 1 day with expanded CVE patching, ten-years security maintenance and optional support for the full stack of open-source applications. Free for personal use.
Get Ubuntu ProSeverity score breakdown
| Parameter | Value |
|---|---|
| Base score |
9.1 · Critical
|
| Attack vector | Network |
| Attack complexity | Low |
| Privileges required | None |
| User interaction | None |
| Scope | Unchanged |
| Confidentiality | High |
| Integrity impact | None |
| Availability impact | High |
| Vector | CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H |
References
Related Ubuntu Security Notices (USN)
- USN-3955-1
- tcpflow vulnerabilities
- 24 April 2019