nfdump 1.6.17 and earlier is affected by an integer overflow in the function Processipfixtemplate_withdraw in ipfix.c that can be abused in order to crash the process remotely (denial of service).
{ "binaries": [ { "binary_name": "nfdump", "binary_version": "1.6.16-3" }, { "binary_name": "nfdump-flow-tools", "binary_version": "1.6.16-3" }, { "binary_name": "nfdump-sflow", "binary_version": "1.6.16-3" } ] }