[FLSA-2004:1468] Updated tcpdump packages that fix multiple security vulnerabilities

Mike Fedyk mfedyk at matchmail.com
Tue Dec 28 23:56:23 UTC 2004 

Your date is set wrong on your system.

Hope I'm not the 50th person to say it though.

Dominic Hargreaves wrote:

>-----------------------------------------------------------------------
>               Fedora Legacy Update Advisory
>
>Synopsis:          Updated tcpdump resolves security vulnerabilities
>Advisory ID:       FLSA:1468
>Issue date:        2004-09-29
>Product:           Red Hat Linux
>Keywords:          Security
>Cross references:  https://bugzilla.fedora.us/show_bug.cgi?id=1468
>CVE Names:         CAN-2004-0183, CAN-2004-0184
>-----------------------------------------------------------------------
>
>
>-----------------------------------------------------------------------
>1. Topic:
>
>Updated tcpdump packages that fix multiple security vulnerabilities
>are now available.
>
>2. Relevant releases/architectures:
>
>Red Hat Linux 7.3 - i386
>Red Hat Linux 9 - i386
>
>3. Problem description:
>
>Tcpdump is a command-line tool for monitoring network traffic.
>
>Tcpdump v3.8.1 and earlier versions contained multiple flaws in the
>packet display functions for the ISAKMP protocol. Upon receiving
>specially crafted ISAKMP packets, tcpdump would try to read beyond
>the end of the packet capture buffer and subsequently crash.
>
>All users are advised to upgrade to these updated packages, which contain a 
>backported fix and are not vulnerable to this issue.
>
>4. Solution:
>
>Before applying this update, make sure all previously released errata 
>relevant to your system have been applied.
>
>To update all RPMs for your particular architecture, run:
>
>rpm -Fvh [filenames]
>
>where [filenames] is a list of the RPMs you wish to upgrade.  Only those 
>RPMs which are currently installed will be updated.  Those RPMs which are 
>not installed but included in the list will not be updated.  Note that you 
>can also use wildcards (*.rpm) if your current directory *only* contains 
>the desired RPMs.
>
>Please note that this update is also available via yum and apt.  Many 
>people find this an easier way to apply updates.  To use yum issue:
>
>yum update
>
>or to use apt:
>
>apt-get update; apt-get upgrade
>
>This will start an interactive process that will result in the appropriate 
>RPMs being upgraded on your system.  This assumes that you have yum or 
>apt-get configured for obtaining Fedora Legacy content. Please visit 
>http://www.fedoralegacy.org/docs/ for directions on how to configure yum 
>and apt-get.
>
>5. Bug IDs fixed:
>
>http://bugzilla.fedora.us - 1468 - tcpdump ISAKMP Packet Decoding Vulnerability
>
>6. RPMs required:
>
>Red Hat Linux 7.3:
>
>SRPM:
>http://download.fedoralegacy.org/redhat/7.3/updates/SRPMS/tcpdump-3.6.3-17.7.3.6.legacy.src.rpm
>
>i386:
>http://download.fedoralegacy.org/redhat/7.3/updates/i386/arpwatch-2.1a11-17.7.3.6.legacy.i386.rpm
>http://download.fedoralegacy.org/redhat/7.3/updates/i386/libpcap-0.6.2-17.7.3.6.legacy.i386.rpm
>http://download.fedoralegacy.org/redhat/7.3/updates/i386/tcpdump-3.6.3-17.7.3.6.legacy.i386.rpm
>
>
>Red Hat Linux 9:
>
>SRPM:
>http://download.fedoralegacy.org/redhat/9/updates/SRPMS/tcpdump-3.7.2-7.9.3.legacy.src.rpm
>
>i386:
>http://download.fedoralegacy.org/redhat/9/updates/i386/arpwatch-2.1a11-7.9.3.legacy.i386.rpm
>http://download.fedoralegacy.org/redhat/9/updates/i386/libpcap-0.7.2-7.9.3.legacy.i386.rpm
>http://download.fedoralegacy.org/redhat/9/updates/i386/tcpdump-3.7.2-7.9.3.legacy.i386.rpm
>
>7. Verification:
>
>SHA1 sum                                 Package Name
>---------------------------------------------------------------------------
>
>3c236622c2f0815b257eb6df89470875844ab051
>7.3/updates/SRPMS/tcpdump-3.6.3-17.7.3.6.legacy.src.rpm
>1d7866f944b95a9350098803c1be9a9439ef9de1
>7.3/updates/i386/arpwatch-2.1a11-17.7.3.6.legacy.i386.rpm
>827884c667461dcd1624b666d29d83e50e4611cc
>7.3/updates/i386/libpcap-0.6.2-17.7.3.6.legacy.i386.rpm
>2e77a8344ce68a80fe484fae4e9e371b92dc25c2
>7.3/updates/i386/tcpdump-3.6.3-17.7.3.6.legacy.i386.rpm
>2a63dfe8422c135d41ec0655d1957b2ac6e348a2
>9/updates/SRPMS/tcpdump-3.7.2-7.9.3.legacy.src.rpm
>e2e2cd142b0a4a50ab3b66a665d52e35fbe103aa
>9/updates/i386/arpwatch-2.1a11-7.9.3.legacy.i386.rpm
>3e7aad82c73a3250828b05e1308eb63a43c0d35e
>9/updates/i386/libpcap-0.7.2-7.9.3.legacy.i386.rpm
>39b28a5fc7bda074426736cfdbc6a2186979daa2
>9/updates/i386/tcpdump-3.7.2-7.9.3.legacy.i386.rpm
>
>These packages are GPG signed by Fedora Legacy for security.  Our key is 
>available from http://www.fedoralegacy org/about/security.php
>
>You can verify each package with the following command:
>
>    rpm --checksig -v <filename>
>
>If you only wish to verify that each package has not been corrupted or 
>tampered with, examine only the sha1sum with the following command:
>
>    sha1sum <filename>
>
>8. References:
>
>http://marc.theaimsgroup.com/?l=bugtraq&m=108067265931525&w=2
>
>9. Contact:
>
>The Fedora Legacy security contact is <secnotice at fedoralegacy.org>. More 
>project details at http://www.fedoralegacy.org
>
>---------------------------------------------------------------------
>  
>
>------------------------------------------------------------------------
>
>--
>fedora-legacy-list mailing list
>fedora-legacy-list at redhat.com
>http://www.redhat.com/mailman/listinfo/fedora-legacy-list
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/fedora-legacy-list/attachments/20041228/f3ad1e3e/attachment.htm>
-------------- next part --------------
No virus found in this outgoing message.
Checked by AVG Anti-Virus.
Version: 7.0.298 / Virus Database: 265.6.6 - Release Date: 12/28/2004

More information about the fedora-legacy-list mailing list