The BGP parser in tcpdump before 4.9.3 has a buffer over-read in print-bgp.c:bgp_capabilities_print() (BGP_CAPCODE_MP). CREATE(Triage):(User=admin) CVE-2018-14467 (https://nvd.nist.gov/vuln/detail/CVE-2018-14467)