Alerts This Week
Warning Icon 1 640
Alerts This Week
Warning Icon 1 640

Gentoo: 200303-5 Critical Advisory on Tcpdump Remote DoS Vulnerability

gentoo
Calendar Grey March 5, 2003
Dist Gentoo Esm H88
The Gentoo Linux Security Notice 202303-6 highlights a critical remote Denial of Service flaw in TCPDUMP, urging users to upgrade to version 3.7.3 for better security
A vulnerability exists in the parsing of ISAKMP packets (UDP port 500) that allows an attacker to force TCPDUMP into an infinite loop upon receipt of a specially crafted packet.

Summary


- - ---------------------------------------------------------------------
GENTOO LINUX SECURITY ANNOUNCEMENT 200303-5
- - ---------------------------------------------------------------------

- - ---------------------------------------------------------------------
- From advisory:
"A vulnerability exists in the parsing of ISAKMP packets (UDP port 500) that allows an attacker to force TCPDUMP into an infinite loop upon receipt of a specially crafted packet."
Read the full advisory at: /us-en
SOLUTION
It is recommended that all Gentoo Linux users who are running net-analyzer/tcpdump upgrade to tcpdump-3.7.2 as follows:
emerge sync emerge -u tcpdump emerge clean
- - --------------------------------------------------------------------- aliz@gentoo.org - GnuPG key is available at - - ---------------------------------------------------------------------
3.7.2

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Severity
critical
Lowest
Low
Medium
High
Critical

PACKAGE : tcpdump
SUMMARY : remote dos
DATE : 2003-03-05 10:19 UTC
EXPLOIT : remote
VERSIONS AFFECTED : <3.7.2 :="" fixed version>3.7.2
CVE : CAN-2003-0108

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround

Your message here