In tcpdump 4.9.2, a stack-based buffer over-read exists in the print_prefix function of print-hncp.c via crafted packet data because of missing initialization.
4.9.3-0ubuntu0.16.04.14.9.3-0ubuntu0.18.04.14.9.3-0ubuntu0.14.04.1+esm1Exploitability
AV:LAC:LPR:NUI:RScope
S:UImpact
C:HI:NA:NCVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N