Fedora 20: tcpdump Security Update

    Date18 Apr 2015
    Posted ByLinuxSecurity Advisories
    Contains security fix for CVE-2015-0261, CVE-2015-2154, CVE-2015-2153, CVE-2015-2155.
    Fedora Update Notification
    2015-03-28 23:46:11
    Name        : tcpdump
    Product     : Fedora 20
    Version     : 4.5.1
    Release     : 4.fc20
    URL         : http://www.tcpdump.org
    Summary     : A network traffic monitoring tool
    Description :
    Tcpdump is a command-line tool for monitoring network traffic.
    Tcpdump can capture and display the packet headers on a particular
    network interface or on all interfaces.  Tcpdump can display all of
    the packet headers, or just the ones that match particular criteria.
    Install tcpdump if you need a program to monitor network traffic.
    Update Information:
    Contains security fix for CVE-2015-0261, CVE-2015-2154, CVE-2015-2153, CVE-2015-2155.
    * Wed Mar 25 2015 Michal Sekletar  - 14:4.5.1-4
    - Fixes for CVE-2015-0261, CVE-2015-2154, CVE-2015-2153, CVE-2015-2155 (#1201799,#1201792,#1201795,#1201797)
    * Wed Dec  3 2014 Michal Sekletar  - 14:4.5.1-3
    - fix for CVE-2014-9140
    * Thu Nov 20 2014 Michal Sekletar  - 14:4.5.1-2
    - fix for CVE-2014-8767 (#1165160)
    - fix for CVE-2014-8768 (#1165161)
    - fix for CVE-2014-8768 (#1165162)
    * Wed Jan 15 2014 Michal Sekletar  - 14:4.5.1-1
    - update to 4.5.1
      [ 1 ] Bug #1201792 - CVE-2015-0261 tcpdump: IPv6 mobility printer mobility_opt_print() typecastimg/signedness error
      [ 2 ] Bug #1201797 - CVE-2015-2154 tcpdump: ethernet printer osi_print_cksum() missing sanity checks out-of-bounds read
      [ 3 ] Bug #1201795 - CVE-2015-2153 tcpdump: tcp printer rpki_rtr_pdu_print() missing length check
    This update can be installed with the "yum" update program.  Use
    su -c 'yum update tcpdump' at the command line.
    For more information, refer to "Managing Software with yum",
    available at http://docs.fedoraproject.org/yum/.
    All packages are signed with the Fedora Project GPG key.  More details on the
    GPG keys used by the Fedora Project can be found at
    package-announce mailing list
    This email address is being protected from spambots. You need JavaScript enabled to view it.
    You are not authorised to post comments.

    Comments powered by CComment

    LinuxSecurity Poll

    What do you think of the articles on LinuxSecurity?

    No answer selected. Please try again.
    Please select either existing option or enter your own, however not both.
    Please select minimum 0 answer(s) and maximum 3 answer(s).
    [{"id":"87","title":"Excellent, don't change a thing!","votes":"37","type":"x","order":"1","pct":51.39,"resources":[]},{"id":"88","title":"Should be more technical","votes":"10","type":"x","order":"2","pct":13.89,"resources":[]},{"id":"89","title":"Should include more HOWTOs","votes":"25","type":"x","order":"3","pct":34.72,"resources":[]}]["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"]["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"]350

    We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy.