{"url":"http://public2.vulnerablecode.io/api/packages/371090?format=json","purl":"pkg:rpm/redhat/tcpdump@14:3.8.2-9?arch=RHEL4","type":"rpm","namespace":"redhat","name":"tcpdump","version":"14:3.8.2-9","qualifiers":{"arch":"RHEL4"},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":null,"latest_non_vulnerable_version":null,"affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/200077?format=json","vulnerability_id":"VCID-51b7-kaq4-67cb","summary":"tcpdump 3.8.3 and earlier allows remote attackers to cause a denial of service (infinite loop) via a crafted (1) BGP packet, which is not properly handled by RT_ROUTING_INFO, or (2) LDP packet, which is not properly handled by the ldp_print function.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-1279.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-1279.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2005-1279","reference_id":"","reference_type":"","scores":[{"value":"0.5679","scoring_system":"epss","scoring_elements":"0.98173","published_at":"2026-06-11T12:55:00Z"},{"value":"0.5679","scoring_system":"epss","scoring_elements":"0.9818","published_at":"2026-06-13T12:55:00Z"},{"value":"0.5679","scoring_system":"epss","scoring_elements":"0.98181","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2005-1279"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-1279","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-1279"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1617629","reference_id":"1617629","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1617629"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/958.c","reference_id":"OSVDB-15863;CVE-2005-1279","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/958.c"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/957.c","reference_id":"OSVDB-15864;CVE-2005-1279","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/957.c"},{"reference_url":"https://access.redhat.com/errata/RHSA-2005:417","reference_id":"RHSA-2005:417","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2005:417"},{"reference_url":"https://access.redhat.com/errata/RHSA-2005:421","reference_id":"RHSA-2005:421","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2005:421"},{"reference_url":"https://usn.ubuntu.com/119-1/","reference_id":"USN-119-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/119-1/"}],"fixed_packages":[],"aliases":["CVE-2005-1279"],"risk_score":1.0,"exploitability":"2.0","weighted_severity":"0.5","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-51b7-kaq4-67cb"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/200078?format=json","vulnerability_id":"VCID-974k-jw18-auhc","summary":"The rsvp_print function in tcpdump 3.9.1 and earlier allows remote attackers to cause a denial of service (infinite loop) via a crafted RSVP packet of length 4.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-1280.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-1280.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2005-1280","reference_id":"","reference_type":"","scores":[{"value":"0.13646","scoring_system":"epss","scoring_elements":"0.94414","published_at":"2026-06-11T12:55:00Z"},{"value":"0.13646","scoring_system":"epss","scoring_elements":"0.94433","published_at":"2026-06-12T12:55:00Z"},{"value":"0.13646","scoring_system":"epss","scoring_elements":"0.94438","published_at":"2026-06-13T12:55:00Z"},{"value":"0.13646","scoring_system":"epss","scoring_elements":"0.9444","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2005-1280"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-1280","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-1280"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1617630","reference_id":"1617630","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1617630"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/956.c","reference_id":"OSVDB-15904;CVE-2005-1280","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/956.c"},{"reference_url":"https://access.redhat.com/errata/RHSA-2005:417","reference_id":"RHSA-2005:417","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2005:417"},{"reference_url":"https://access.redhat.com/errata/RHSA-2005:421","reference_id":"RHSA-2005:421","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2005:421"},{"reference_url":"https://usn.ubuntu.com/119-1/","reference_id":"USN-119-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/119-1/"}],"fixed_packages":[],"aliases":["CVE-2005-1280"],"risk_score":0.2,"exploitability":"2.0","weighted_severity":"0.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-974k-jw18-auhc"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/200076?format=json","vulnerability_id":"VCID-umjr-hxps-kfde","summary":"The isis_print function, as called by isoclns_print, in tcpdump 3.9.1 and earlier allows remote attackers to cause a denial of service (infinite loop) via a zero length, as demonstrated using a GRE packet.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-1278.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-1278.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2005-1278","reference_id":"","reference_type":"","scores":[{"value":"0.15422","scoring_system":"epss","scoring_elements":"0.94808","published_at":"2026-06-11T12:55:00Z"},{"value":"0.15422","scoring_system":"epss","scoring_elements":"0.94826","published_at":"2026-06-12T12:55:00Z"},{"value":"0.15422","scoring_system":"epss","scoring_elements":"0.94832","published_at":"2026-06-13T12:55:00Z"},{"value":"0.15422","scoring_system":"epss","scoring_elements":"0.94833","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2005-1278"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-1278","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-1278"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1617628","reference_id":"1617628","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1617628"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=307920","reference_id":"307920","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=307920"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/959.c","reference_id":"OSVDB-15862;CVE-2005-1278","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/959.c"},{"reference_url":"https://access.redhat.com/errata/RHSA-2005:417","reference_id":"RHSA-2005:417","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2005:417"},{"reference_url":"https://access.redhat.com/errata/RHSA-2005:421","reference_id":"RHSA-2005:421","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2005:421"},{"reference_url":"https://usn.ubuntu.com/119-1/","reference_id":"USN-119-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/119-1/"}],"fixed_packages":[],"aliases":["CVE-2005-1278"],"risk_score":0.2,"exploitability":"2.0","weighted_severity":"0.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-umjr-hxps-kfde"}],"fixing_vulnerabilities":[],"risk_score":"1.0","resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/tcpdump@14:3.8.2-9%3Farch=RHEL4"}