tested this CVE with 32-bit on 4.9.3, and it seems to be fixed

[tcpdump] / tests / juniper_header-heapoverflow.pcap

diff --git a/tests/juniper_header-heapoverflow.pcap b/tests/juniper_header-heapoverflow.pcap
index 89cc3310e5a344a06b5ec77bc3f0cd18ee6edd79..2b9664754c7099d1fc144c6e3fb18f501fc1dff0 100644 (file)
Binary files a/tests/juniper_header-heapoverflow.pcap and b/tests/juniper_header-heapoverflow.pcap differ