The RSVP parser in tcpdump before 4.9.3 has a buffer over-read in print-rsvp.c:rsvpobjprint().
{ "vanir_signatures": [ { "digest": { "threshold": 0.9, "line_hashes": [ "95956160535295757579567641443539735965", "264214346004029066915737867568347579433", "191634927168585356814921293092421744513", "285795700313410504609937621640443097330" ] }, "signature_version": "v1", "deprecated": false, "source": "https://github.com/the-tcpdump-group/tcpdump/commit/bea2686c296b79609060a104cc139810785b0739", "target": { "file": "print-rsvp.c" }, "id": "CVE-2018-14465-91ebe317", "signature_type": "Line" }, { "digest": { "length": 24661.0, "function_hash": "246797534901947800846891123058778731534" }, "signature_version": "v1", "deprecated": false, "source": "https://github.com/the-tcpdump-group/tcpdump/commit/bea2686c296b79609060a104cc139810785b0739", "target": { "file": "print-rsvp.c", "function": "rsvp_obj_print" }, "id": "CVE-2018-14465-f6e4a23f", "signature_type": "Function" } ] }