The RSVP parser in tcpdump before 4.9.3 has a buffer over-read in print-rsvp.c:rsvpobjprint().
{ "vanir_signatures": [ { "signature_version": "v1", "target": { "file": "print-rsvp.c" }, "signature_type": "Line", "source": "https://github.com/the-tcpdump-group/tcpdump/commit/bea2686c296b79609060a104cc139810785b0739", "deprecated": false, "digest": { "line_hashes": [ "95956160535295757579567641443539735965", "264214346004029066915737867568347579433", "191634927168585356814921293092421744513", "285795700313410504609937621640443097330" ], "threshold": 0.9 }, "id": "CVE-2018-14465-91ebe317" }, { "signature_version": "v1", "target": { "function": "rsvp_obj_print", "file": "print-rsvp.c" }, "signature_type": "Function", "source": "https://github.com/the-tcpdump-group/tcpdump/commit/bea2686c296b79609060a104cc139810785b0739", "deprecated": false, "digest": { "length": 24661.0, "function_hash": "246797534901947800846891123058778731534" }, "id": "CVE-2018-14465-f6e4a23f" } ] }