Debian: DSA-206-1 Moderate: Tcpdump Denial of Service Risk
debian
December 11, 2002
The BGP decoding routines for tcpdump used incorrect bounds checking when copying data
Topics Covered
Summary
Package : tcpdump
Problem type : incorrect bounds checking
Debian-specific: no
The BGP decoding routines for tcpdump used incorrect bounds checking
when copying data. This could be abused by introducing malicious traffic
on a sniffed network for a denial of service attack against tcpdump,
or possibly even remote code execution.
This has been fixed in version 3.6.2-2.2.
------------------------------------------------------------------------
Obtaining updates:
By hand:
wget URL
will fetch the file for you.
dpkg -i FILENAME.deb
will install the fetched file.
With apt:
deb Debian -- Security Information stable/updates main
added to /etc/apt/sources.list will provide security updates
Additional information can be found on the Debian security webpages
at Debian -- Security Information
------------------------------------------------------------------------
Debian GNU/Linux 3.0 alias woody
--------------------------------
Woody was released for alpha, arm, ...
PREVIOUS
NEXT
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!