RHSA-2020:4760-01 -- Redhat tcpdumpID: oval:org.secpod.oval:def:504721 | Date: (C)2020-12-23 (M)2023-08-24 |
Class: PATCH | Family: unix |
The tcpdump packages contain the tcpdump utility for monitoring network traffic. The tcpdump utility can capture and display the packet headers on a particular network interface or on all interfaces. The following packages have been upgraded to a later upstream version: tcpdump . Security Fix: * tcpdump: SMB data printing mishandled * tcpdump: SMB data printing mishandled * tcpdump: Out of bounds read/write in get_next_file in tcpdump.c * tcpdump: Buffer over-read in ldp_tlv_print function in print-ldp.c * tcpdump: Buffer over-read in icmp_print function in print-icmp.c * tcpdump: Buffer over-read in vrrp_print function in print-vrrp.c * tcpdump: Buffer over-read in lmp_print_data_link_subobjs function in print-lmp.c * tcpdump: Buffer over-read in rsvp_obj_print function in print-rsvp.c * tcpdump: Buffer over-read in print-icmp6.c * tcpdump: Buffer over-read in bgp_capabilities_print in print-bgp.c * tcpdump: Buffer over-read in mfr_print function in print-fr.c * tcpdump: Buffer over-read in ikev1_n_print function in print-isakmp.c * tcpdump: Buffer over-read in babel_print_v2 in print-babel.c * tcpdump: Buffer over-read in ospf6_print_lshdr function in print-ospf6.c * tcpdump: Buffer over-read in bgp_capabilities_print function in print-bgp.c * tcpdump: Buffer over-read in function rpl_dio_printopt in print-icmp6.c * tcpdump: Buffer over-read in print-802_11.c * tcpdump: Access to uninitialized buffer in print_prefix function in print-hncp.c * tcpdump: Buffer over-read in dccp_print_option function in print-dccp.c * tcpdump: Buffer over-read in bgp_attr_print function in print-bgp.c * tcpdump: Resource exhaustion in bgp_attr_print function in print-bgp.c * tcpdump: Buffer over-read in print_trans function in print-smb.c * tcpdump: Resource exhaustion in smb_fdata funtion in smbutil.c * tcpdump: Buffer overflow in lmp_print_data_link_subobjs in print-lmp.c For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the References section. Additional Changes: For detailed information on changes in this release, see the Red Hat Enterprise Linux 8.3 Release Notes linked from the References section.
Platform: |
Red Hat Enterprise Linux 8 |