The IKEv1 parser in tcpdump before 4.9.3 has a buffer over-read in print-isakmp.c:ikev1nprint().
{ "vanir_signatures": [ { "digest": { "length": 4349.0, "function_hash": "35378411701171618238006475475567792508" }, "signature_version": "v1", "deprecated": false, "source": "https://github.com/the-tcpdump-group/tcpdump/commit/396e94ff55a80d554b1fe46bf107db1e91008d6c", "target": { "file": "print-isakmp.c", "function": "ikev1_n_print" }, "id": "CVE-2018-14469-5b2bb70d", "signature_type": "Function" }, { "digest": { "threshold": 0.9, "line_hashes": [ "32212776911566542281069461305618829533", "122164978750485987116846216737892937540", "298979783652079875277022217485206467429", "206152267921578122394862164213772598261" ] }, "signature_version": "v1", "deprecated": false, "source": "https://github.com/the-tcpdump-group/tcpdump/commit/396e94ff55a80d554b1fe46bf107db1e91008d6c", "target": { "file": "print-isakmp.c" }, "id": "CVE-2018-14469-7d125dcf", "signature_type": "Line" } ] }