The command-line argument parser in tcpdump before 4.9.3 has a buffer overflow in tcpdump.c:getnextfile().
{ "vanir_signatures": [ { "digest": { "length": 251.0, "function_hash": "126263664374377259259848131089213093130" }, "target": { "function": "get_next_file", "file": "tcpdump.c" }, "signature_version": "v1", "signature_type": "Function", "id": "CVE-2018-14879-6234411b", "source": "https://github.com/the-tcpdump-group/tcpdump/commit/9ba91381954ad325ea4fd26b9c65a8bd9a2a85b6", "deprecated": false }, { "digest": { "line_hashes": [ "156414477512914937735898106359658109046", "35201403806735581188557461837469421668", "23924796847707762312820743791531290853", "12064797696006419253548047769207005910", "174427735354533864298767395203531643334", "164693331437454322622059827719618872215", "237731344138606636118708669509842489309", "272161225527569554839900663071486635571", "206327241644446304332849693730060664525" ], "threshold": 0.9 }, "target": { "file": "tcpdump.c" }, "signature_version": "v1", "signature_type": "Line", "id": "CVE-2018-14879-9bb1eb27", "source": "https://github.com/the-tcpdump-group/tcpdump/commit/9ba91381954ad325ea4fd26b9c65a8bd9a2a85b6", "deprecated": false } ] }