LEDE v17.01.0-rc2 Changelog

This changelog lists all commits done in LEDE since the v17.01.0-rc1 tag, grouped by subsystem. The changes are chronologically ordered from top to bottom and cover the Git repository history until the tagging of the 17.01.0-rc2 release.

Build System / Buildroot (6 changes)

76f1b94 download.pl: fix detecting download errors with curl (+1,-1)
83c9bfa build: introduce default HOST_MAKE_VARS for host-builds (+7,-1)
e5bc7bf build: properly pass CPP and CXX flags in HOST_MAKE_VARS (+2,-1)
4d561b3 package-ipkg: Do not fail build without base-files (+2)
1b51a49 ccache, samba36: fix samba.org addresses to use https (+8,-7)
28b7d7f LEDE v17.01.0-rc2: adjust config defaults (+10,-8)

Build System / Feeds (1 change)

28b7d7f LEDE v17.01.0-rc2: adjust config defaults (+10,-8)

Build System / Host Utilities (5 changes)

4fa8f2a tools/qemu: use default host configure rule ; set appropriate vars & args (+7,-9)
e038c60 qemu: rename internal crypto/aes symbols (+7,-1)
47fa00a tools: update kernel2minor to 0.24 version (+4,-61)
82009d4 tools/cmake: remove HOST_CONFIGURE_CMD and re-distribute the args & vars (+2,-5)
1b51a49 ccache, samba36: fix samba.org addresses to use https (+8,-7)

Build System / Toolchain (1 change)

bce140e musl: update musl to 1.1.16+ and switch to download from git (+7,-1.6K)

Kernel (10 changes)

e384982 kernel: update bcma to fix devm memory leaks (+133,-2)
ea43d60 kernel: ar8327/ar8337: disable ARL access code to avoid lockups (FS#384) (+6)
0224e32 kernel: fix BCM54612E PHY support (+87,-4)
f61044a kernel: rename bgmac patches to squeeze them ()
aec04e1 kernel: use upstream accepted bgmac fix for BCM47186B0 (+4,-1)
41dc50f kernel: backport bgmac support for external PHYs (+540,-4)
ee3067c Kernel: bump to 4.4.44 (+41,-76)
c656cbc kernel: bump to 4.4.45 (+5,-5)
b786a5f kernel: bump to 4.4.46 (+3,-3)
054ce16 kernel: update kernel 4.4 to version 4.4.47 (+9,-9)

Packages / Common (15 changes)

d7cae5f opkg: clarify messages and errors related to downloads (+62,-1)
f951963 mwlwifi: Fixes rewritten history hash and latest version (+1,-1)
2f9568a hostapd: expose wps_independent and ap_setup_locked as uci options (+5,-3)
ff81358 hostapd: default to wps_independent 1 (+2,-1)
06fca0c kmod-sched-cake: add 'mpu' minimum packet length support (+3,-3)
acebb4a iproute2: cake: add 'mpu' minimum packet length support (+28,-4)
7c5bc82 openvpn: ssl-enabled variants also provide a virtual openvpn-crypto package (+5,-1)
d1d970e libtool: don't clobber host libtool infrastructure (+7,-7)
4f5ff00 kmod-sched-cake: Bump to latest version (+4,-4)
4cd9625 iproute2: cake: update cake support (+24,-11)
f8d8b60 Fix dependency for hostapd (+1,-1)
1b51a49 ccache, samba36: fix samba.org addresses to use https (+8,-7)
a0bc62f hostapd: backport support for sending debug messages to the syslog (+169,-24)
bc49d79 hostapd: enable support for logging wpa_printf messages to syslog (+6)
2ad4383 tcpdump: update to version 4.9.0 (+81,-81)

Packages / LEDE base files (4 changes)

b2437a0 base-files: don't overwrite model name set by target (+1,-1)
754f474 base-files: uppercase default hostname: LEDE (+1,-1)
718c201 base-files: add /etc/iproute2/rt_protos (+20,-1)
28b7d7f LEDE v17.01.0-rc2: adjust config defaults (+10,-8)

Packages / LEDE network userland (8 changes)

406f85a mdns: update to the latest version (+3,-3)
2580392 mdnsd: the service is ignoring questions (+7,-5)
9cbbb14 do not assume that dns structs are aligned (+3,-3)
fe253bc netifd: update to git HEAD version (+3,-3)
650758b interface-ip: route proto config support (FS#170) (+70,-8)
ef170bf odhcpd: update to git HEAD version (+3,-3)
c8ac572 ndp: don't scan netlink attributes in case of netlink route event (+6,-4)
df023ad treewide: use RELAYD_MAX_ADDRS as address array size (+5,-4)
c5040fe router: add syslog debug tracing for trouble shooting (+24,-5)
0485580 ndp: code cleanup (-4)
da660c7 treewide: rework prio of syslog messages (+5,-5)
237f1f4 router: convert syslog lifetime traces into LOG_INFO prio (+2,-2)
cd99f3c odhcpd: update to git HEAD version (+3,-3)
70fbf93 router: fix compile issue on 64 targets (+1,-1)
8221907 Revert "router: fix compile issue on 64 targets" (+1,-1)
e447ff9 router: fix compile issue on 64 bit systems (+1,-1)
036cf93 odhcpd: update to git HEAD version (+3,-3)
44965f1 odhcpd: extra syslog tracing (+14,-9)
a6eadd7 odhcpd: rework IPv6 interface address dump (+41,-32)
c4f9ace odhcpd: decrease default log level to LOG_INFO (+1,-1)
02d5118 odhcpd: use LEDE_GIT in package source url (+1,-1)
4d9106a odhcp6c: update to git HEAD version (+3,-3)
419fb63 dhcpv6: server unicast option support (+109,-6)
c7122ec update README (+2,-1)
e9d80cc dhcpv6: trigger restart of DHCPv6 state machine when not receiving statefull ... (+2,-3)
c13b6a0 dhcpv6: fix white space error (+1,-1)
786160c odhcp6c: use LEDE_GIT in package source url (+1,-1)

Packages / LEDE system userland (3 changes)

977eb2c ubus: update to the latest version (+3,-3)
04e21a6 build: remove /opt/local prefix (-5)
fd61773 ubusd_proto: fix crash when trying to subscribe to system objects (+1,-1)
d009a08 lua: add 'defer_request' and 'complete_deferred_request' functions (+34)
5ca6bae ubusd: fix id lookup of objects with path and no methods (+3,-2)
df088f0 Allow sending a fd along a ubus_request (+91,-14)
d5fabac libubus: reduce code duplication, fix indentation (+18,-44)
ad5333a ubus: ubus_free: clear pending timers before freeing context (+1)
97ac89f ubusd: fix issue caused by an implicit cast (+3,-2)
b2cd9b8 ubus: update to the latest version (+3,-3)
cd82f97 libubus: move uloop_init() call to ubus_connect_ctx (+1,-1)
6f4e11e libubus: do not register/unregister with uloop during sync requests (+2,-11)
be7480c procd: update procd.sh to disallow signal-numbers, enforce signal-names (+4,-1)

Target / ar71xx (13 changes)

e53e44a ar71xx: create a proper default profile for the mikrotik subtarget, drop othe... (+6,-23)
0656bee ar71xx: convert mikrotik routerboard support to UBI (+80,-114)
ca2a03d ar71xx: add support for RB-941-2nD (+243,-4)
3e4b00e ar71xx: fix network config for Mikrotik RB411U (+1)
51b6dd1 ar71xx: fix up the kernel config for the mikrotik subtarget (+64)
2cf64af ar71xx: mark soft_config mtd part as writeable for RB-941-2nD (-1)
0780fd5 ar71xx: improve Mikrotik hAP Lite device support (+5,-4)
198d73b ar71xx: Fix mikrotik subtarget default profile for device profile selection (+1)
01888f9 ar71xx: add missing DEVICE_TITLE for mikrotik devices (+3)
0880105 ar71xx: fix tl-wr841n-v7 switch port mapping (+5,-1)
581285c ar71xx: fix netgear wnr2000 v3 switch port mapping (+2,-2)
b313f0d ar71xx: fix netgear wndr3700 v1/v2, wndr3800/wndr3800ch switch port mapping (+5,-2)
ee3067c Kernel: bump to 4.4.44 (+41,-76)

Target / arc770 (1 change)

42f3c1f arc770: fix broken upstream change (+31)

Target / bcm53xx (8 changes)

e384982 kernel: update bcma to fix devm memory leaks (+133,-2)
d5b5339 bcm53xx: fix LAN MAC address for devices that use eth2 originally (+6)
5ed2322 bcm53xx: set WAN MAC address to don't share one with LAN interface (+10,-1)
29c0b57 bcm53xx: use accepted BCM5301X patches for R8000 and Luxul devices (+9)
81f9cd5 bcm53xx: backport upstream DTS files for Linksys devices (+92,-16)
8ff8e51 bcm53xx: image: use one style of adding TARGET_DEVICES entries (+4,-4)
518bb7a bcm53xx: refresh Linux 4.4 config (+7)
f2b885d bcm53xx: set Netgear R8000 USB LEDs (+18)

Target / brcm2708 (1 change)

ee3067c Kernel: bump to 4.4.44 (+41,-76)

Target / cns3xxx (3 changes)

c656cbc kernel: bump to 4.4.45 (+5,-5)
b786a5f kernel: bump to 4.4.46 (+3,-3)
054ce16 kernel: update kernel 4.4 to version 4.4.47 (+9,-9)

Target / imx6 (1 change)

ee3067c Kernel: bump to 4.4.44 (+41,-76)

Target / ipq806x (4 changes)

9c915d1 ipq806x: Fix wireless support for Netgear Nighthawk X4S D7800 (+15,-11)
41de9a2 ipq806x: fixup nbg6817 internal mmc and switch configuration in DTS (+1,-4)
c53bb97 ipq806x: fix wireless macs (+1,-1)
054ce16 kernel: update kernel 4.4 to version 4.4.47 (+9,-9)

Target / lantiq (1 change)

31b0640 lantiq: fix unaligned access in xrx200_poll_rx() (+2,-2)

Target / mediatek (1 change)

ee3067c Kernel: bump to 4.4.44 (+41,-76)

Target / mvebu (2 changes)

faea9be mvebu: set fan_ctrl.sh only on mamba (+23,-1)
2a14335 mvebu: fix usb port leds (+15,-10)

Target / octeon (1 change)

d6a830a octeon: fix mtd partitions for erlite on cmdline (+1,-1)

Target / ramips (3 changes)

bda982b ramips: add missing DTS pcie node for WSR-600 (+21)
3f9a194 ramips: fix Airlink AR725W factory image build (+5,-2)
ee3067c Kernel: bump to 4.4.44 (+41,-76)

Target / x86 (3 changes)

af3ae4b x86: Add sp5100_tco AMD patches (+217)
e9b60b5 x86: add kernel module for sp5100_tco watchdog (+15)
ee3067c Kernel: bump to 4.4.44 (+41,-76)

Wireless / Common (9 changes)

5f2a1ac ath9k: remove the deaf rx path state check patch (+53,-149)
36288db mac80211: start hostapd with logging wpa_printf messages to syslog (+1,-1)
e8f4222 mac80211: rename brcmfmac patches to use higher prefix ()
e48b1c2 mac80211: brcmfmac: backport some old patches from 2016 (+332,-8)
85d128f mac80211: brcmfmac: backport scheduled scan cleanup and chip support (+2.2K,-11)
4b9bdb4 mac80211: brcmfmac: backport 4.10 fixes & typo fix (+111)
c578da6 mac80211: brcmfmac: backport minor code cleanups (+363,-1)
52add19 mac80211: brcmfmac: backport PSM watchdog improvements (+96)
5c4b2eb mac80211: brcmfmac: backport wowlan netdetect fixes (+149,-2)

Wireless / MT76 (1 change)

f4162bf mt76: update to the latest version (+3,-3)
36ad8c3 mt76x2: dfs: remove unnecessary mt76x2_dfs_chan_state() routine (-45)
9e7bb53 mt76x2: phy: update dfs AGC parameters according to AGC_8 register (+3,-3)
3c8caaf mt76x2: dfs: update energy thresholds to reduce false positives (+16,-16)

#170

Description: Adding routes with a proto field doesn't work
Link: https://bugs.lede-project.org/index.php?do=details&task_id=170
Commits:
fe253bc netifd: update to git HEAD version (+3,-3)
650758b interface-ip: route proto config support (FS#170) (+70,-8)

#384

Description: IPQ806X: CMD: swconfig on R7800 generate Kernel Panic!
Link: https://bugs.lede-project.org/index.php?do=details&task_id=384
Commits:
ea43d60 kernel: ar8327/ar8337: disable ARL access code to avoid lockups (FS#384) (+6)

#423

Description: Linksys WRT1900ACS USB led names are wrong
Link: https://bugs.lede-project.org/index.php?do=details&task_id=423
Commits:
2a14335 mvebu: fix usb port leds (+15,-10)

#425

Description: mvebu led config (wrt1200 v1)
Link: https://bugs.lede-project.org/index.php?do=details&task_id=425
Commits:
2a14335 mvebu: fix usb port leds (+15,-10)

#444

Description: qemu/host: multiple definition of AES_*
Link: https://bugs.lede-project.org/index.php?do=details&task_id=444
Commits:
e038c60 qemu: rename internal crypto/aes symbols (+7,-1)

#451

Description: ipq806x: random mac is assigned to WiFi phys
Link: https://bugs.lede-project.org/index.php?do=details&task_id=451
Commits:
c53bb97 ipq806x: fix wireless macs (+1,-1)

CVE-2016-7922

Description: The AH parser in tcpdump before 4.9.0 has a buffer overflow in print-ah.c:ah_print().

Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7922
Commits:
2ad4383 tcpdump: update to version 4.9.0 (+81,-81)

CVE-2016-7923

Description: The ARP parser in tcpdump before 4.9.0 has a buffer overflow in print-arp.c:arp_print().

Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7923
Commits:
2ad4383 tcpdump: update to version 4.9.0 (+81,-81)

CVE-2016-7924

Description: The ATM parser in tcpdump before 4.9.0 has a buffer overflow in print-atm.c:oam_print().

Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7924
Commits:
2ad4383 tcpdump: update to version 4.9.0 (+81,-81)

CVE-2016-7925

Description: The compressed SLIP parser in tcpdump before 4.9.0 has a buffer overflow in print-sl.c:sl_if_print().

Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7925
Commits:
2ad4383 tcpdump: update to version 4.9.0 (+81,-81)

CVE-2016-7926

Description: The Ethernet parser in tcpdump before 4.9.0 has a buffer overflow in print-ether.c:ethertype_print().

Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7926
Commits:
2ad4383 tcpdump: update to version 4.9.0 (+81,-81)

CVE-2016-7927

Description: The IEEE 802.11 parser in tcpdump before 4.9.0 has a buffer overflow in print-802_11.c:ieee802_11_radio_print().

Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7927
Commits:
2ad4383 tcpdump: update to version 4.9.0 (+81,-81)

CVE-2016-7928

Description: The IPComp parser in tcpdump before 4.9.0 has a buffer overflow in print-ipcomp.c:ipcomp_print().

Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7928
Commits:
2ad4383 tcpdump: update to version 4.9.0 (+81,-81)

CVE-2016-7929

Description: The Juniper PPPoE ATM parser in tcpdump before 4.9.0 has a buffer overflow in print-juniper.c:juniper_parse_header().

Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7929
Commits:
2ad4383 tcpdump: update to version 4.9.0 (+81,-81)

CVE-2016-7930

Description: The LLC/SNAP parser in tcpdump before 4.9.0 has a buffer overflow in print-llc.c:llc_print().

Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7930
Commits:
2ad4383 tcpdump: update to version 4.9.0 (+81,-81)

CVE-2016-7931

Description: The MPLS parser in tcpdump before 4.9.0 has a buffer overflow in print-mpls.c:mpls_print().

Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7931
Commits:
2ad4383 tcpdump: update to version 4.9.0 (+81,-81)

CVE-2016-7932

Description: The PIM parser in tcpdump before 4.9.0 has a buffer overflow in print-pim.c:pimv2_check_checksum().

Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7932
Commits:
2ad4383 tcpdump: update to version 4.9.0 (+81,-81)

CVE-2016-7933

Description: The PPP parser in tcpdump before 4.9.0 has a buffer overflow in print-ppp.c:ppp_hdlc_if_print().

Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7933
Commits:
2ad4383 tcpdump: update to version 4.9.0 (+81,-81)

CVE-2016-7934

Description: The RTCP parser in tcpdump before 4.9.0 has a buffer overflow in print-udp.c:rtcp_print().

Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7934
Commits:
2ad4383 tcpdump: update to version 4.9.0 (+81,-81)

CVE-2016-7935

Description: The RTP parser in tcpdump before 4.9.0 has a buffer overflow in print-udp.c:rtp_print().

Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7935
Commits:
2ad4383 tcpdump: update to version 4.9.0 (+81,-81)

CVE-2016-7936

Description: The UDP parser in tcpdump before 4.9.0 has a buffer overflow in print-udp.c:udp_print().

Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7936
Commits:
2ad4383 tcpdump: update to version 4.9.0 (+81,-81)

CVE-2016-7937

Description: The VAT parser in tcpdump before 4.9.0 has a buffer overflow in print-udp.c:vat_print().

Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7937
Commits:
2ad4383 tcpdump: update to version 4.9.0 (+81,-81)

CVE-2016-7938

Description: The ZeroMQ parser in tcpdump before 4.9.0 has an integer overflow in print-zeromq.c:zmtp1_print_frame().

Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7938
Commits:
2ad4383 tcpdump: update to version 4.9.0 (+81,-81)

CVE-2016-7939

Description: The GRE parser in tcpdump before 4.9.0 has a buffer overflow in print-gre.c, multiple functions.

Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7939
Commits:
2ad4383 tcpdump: update to version 4.9.0 (+81,-81)

CVE-2016-7940

Description: The STP parser in tcpdump before 4.9.0 has a buffer overflow in print-stp.c, multiple functions.

Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7940
Commits:
2ad4383 tcpdump: update to version 4.9.0 (+81,-81)

CVE-2016-7973

Description: The AppleTalk parser in tcpdump before 4.9.0 has a buffer overflow in print-atalk.c, multiple functions.

Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7973
Commits:
2ad4383 tcpdump: update to version 4.9.0 (+81,-81)

CVE-2016-7974

Description: The IP parser in tcpdump before 4.9.0 has a buffer overflow in print-ip.c, multiple functions.

Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7974
Commits:
2ad4383 tcpdump: update to version 4.9.0 (+81,-81)

CVE-2016-7975

Description: The TCP parser in tcpdump before 4.9.0 has a buffer overflow in print-tcp.c:tcp_print().

Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7975
Commits:
2ad4383 tcpdump: update to version 4.9.0 (+81,-81)

CVE-2016-7983

Description: The BOOTP parser in tcpdump before 4.9.0 has a buffer overflow in print-bootp.c:bootp_print().

Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7983
Commits:
2ad4383 tcpdump: update to version 4.9.0 (+81,-81)

CVE-2016-7984

Description: The TFTP parser in tcpdump before 4.9.0 has a buffer overflow in print-tftp.c:tftp_print().

Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7984
Commits:
2ad4383 tcpdump: update to version 4.9.0 (+81,-81)

CVE-2016-7985

Description: The CALM FAST parser in tcpdump before 4.9.0 has a buffer overflow in print-calm-fast.c:calm_fast_print().

Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7985
Commits:
2ad4383 tcpdump: update to version 4.9.0 (+81,-81)

CVE-2016-7986

Description: The GeoNetworking parser in tcpdump before 4.9.0 has a buffer overflow in print-geonet.c, multiple functions.

Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7986
Commits:
2ad4383 tcpdump: update to version 4.9.0 (+81,-81)

CVE-2016-7992

Description: The Classical IP over ATM parser in tcpdump before 4.9.0 has a buffer overflow in print-cip.c:cip_if_print().

Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7992
Commits:
2ad4383 tcpdump: update to version 4.9.0 (+81,-81)

CVE-2016-7993

Description: A bug in util-print.c:relts_print() in tcpdump before 4.9.0 could cause a buffer overflow in multiple protocol parsers (DNS, DVMRP, HSRP, IGMP, lightweight resolver protocol, PIM).

Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7993
Commits:
2ad4383 tcpdump: update to version 4.9.0 (+81,-81)

CVE-2016-8574

Description: The FRF.15 parser in tcpdump before 4.9.0 has a buffer overflow in print-fr.c:frf15_print().

Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8574
Commits:
2ad4383 tcpdump: update to version 4.9.0 (+81,-81)

CVE-2016-8575

Description: The Q.933 parser in tcpdump before 4.9.0 has a buffer overflow in print-fr.c:q933_print(), a different vulnerability than CVE-2017-5482.

Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8575
Commits:
2ad4383 tcpdump: update to version 4.9.0 (+81,-81)

CVE-2016-8859

Description: ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.

Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8859
Commits:
bce140e musl: update musl to 1.1.16+ and switch to download from git (+7,-1.6K)

CVE-2017-5202

Description: The ISO CLNS parser in tcpdump before 4.9.0 has a buffer overflow in print-isoclns.c:clnp_print().

Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5202
Commits:
2ad4383 tcpdump: update to version 4.9.0 (+81,-81)

CVE-2017-5203

Description: The BOOTP parser in tcpdump before 4.9.0 has a buffer overflow in print-bootp.c:bootp_print().

Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5203
Commits:
2ad4383 tcpdump: update to version 4.9.0 (+81,-81)

CVE-2017-5204

Description: The IPv6 parser in tcpdump before 4.9.0 has a buffer overflow in print-ip6.c:ip6_print().

Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5204
Commits:
2ad4383 tcpdump: update to version 4.9.0 (+81,-81)

CVE-2017-5205

Description: The ISAKMP parser in tcpdump before 4.9.0 has a buffer overflow in print-isakmp.c:ikev2_e_print().

Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5205
Commits:
2ad4383 tcpdump: update to version 4.9.0 (+81,-81)

CVE-2017-5341

Description: The OTV parser in tcpdump before 4.9.0 has a buffer overflow in print-otv.c:otv_print().

Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5341
Commits:
2ad4383 tcpdump: update to version 4.9.0 (+81,-81)

CVE-2017-5342

Description: In tcpdump before 4.9.0, a bug in multiple protocol parsers (Geneve, GRE, NSH, OTV, VXLAN and VXLAN GPE) could cause a buffer overflow in print-ether.c:ether_print().

Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5342
Commits:
2ad4383 tcpdump: update to version 4.9.0 (+81,-81)

CVE-2017-5482

Description: The Q.933 parser in tcpdump before 4.9.0 has a buffer overflow in print-fr.c:q933_print(), a different vulnerability than CVE-2016-8575.

Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5482
Commits:
2ad4383 tcpdump: update to version 4.9.0 (+81,-81)

CVE-2017-5483

Description: The SNMP parser in tcpdump before 4.9.0 has a buffer overflow in print-snmp.c:asn1_parse().

Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5483
Commits:
2ad4383 tcpdump: update to version 4.9.0 (+81,-81)

CVE-2017-5484

Description: The ATM parser in tcpdump before 4.9.0 has a buffer overflow in print-atm.c:sig_print().

Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5484
Commits:
2ad4383 tcpdump: update to version 4.9.0 (+81,-81)

CVE-2017-5485

Description: The ISO CLNS parser in tcpdump before 4.9.0 has a buffer overflow in addrtoname.c:lookup_nsap().

Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5485
Commits:
2ad4383 tcpdump: update to version 4.9.0 (+81,-81)

CVE-2017-5486

Description: The ISO CLNS parser in tcpdump before 4.9.0 has a buffer overflow in print-isoclns.c:clnp_print().

Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5486
Commits:
2ad4383 tcpdump: update to version 4.9.0 (+81,-81)