CVEs affecting projects tracked on Release Alert, from NVD & OSV.
The PPP parser in tcpdump before 4.9.0 has a buffer overflow in print-ppp.c:ppp_hdlc_if_print().