Alerts This Week
Warning Icon 1 640
Alerts This Week
Warning Icon 1 640

Red Hat RHSA-2007:0368-03 Moderate: tcpdump Integer Overflow DoS

red hat
Calendar Grey November 7, 2007
Dist Redhat Esm H88
Important tcpdump revisions fix critical denial of service vulnerabilities and integer overflow concerns. Red Hat users must implement these updates immediately.
Updated tcpdump packages that fix a security issue and functionality bugs are now available

Solution

Before applying this update, make sure that all previously-released errata relevant to your system have been applied.

This update is available via Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at

5. Bug IDs fixed (http://bugzilla.redhat.com/):

232347 - CVE-2007-1218 tcpdump denial of service 237779 - Wrong init script 241677 - tcpdump -Z -C should drop root privileges completely 250275 - CVE-2007-3798 tcpdump BGP integer overflow

6. RPMs required:

Red Hat Enterprise Linux Desktop (v. 5 client):

SRPMS: 2d8a9b6ce960508362a7f9d80633b3da tcpdump-3.9.4-11.el5.src.rpm

i386: bf509e032af93a166ee85eb44fb9806c libpcap-0.9.4-11.el5.i386.rpm e1366b54fb414744f8066cda26ae1cf4 tcpdump-3.9.4-11.el5.i386.rpm 3a3db9efe4f5ba07d092013a88bf5ae4 tcpdump-debuginfo-3.9.4-11.el5.i386.rpm

x86_64: bf509e032af93a166ee85eb44fb9806c libpcap-0.9.4-11.el5.i386.rpm 5f5a5af8ab76663a97667d1036ec9668 libpcap-0.9.4-11.el5.x86_64.rpm 230e4421c10064f6b30666894151f545 tcpdump-3.9.4-11.el5.x86_64.rpm 3a3db9efe4f5ba07d092013a88bf5ae4 tcpdump-debuginfo-3.9.4-11.el5.i386.rpm fe81bedaac8d616dd5174aa36ede5261 tcpdump-debuginfo-3.9.4-11.el5.x86_64.rpm

RHEL Desktop Workstation (v. 5 client):

SRPMS: 2d8a9b6ce960508362a7f9d80633b3da tcpdump-3.9.4-11.el5.src.rpm

i386: 8a2efa5cde05859090d27899455fd8ea arpwatch-2.1a13-18.el5.i386.rpm e7fc87898e4d015cd6d9e3db48d9ca9f libpcap-devel-0.9.4-11.el5.i386.rpm 3a3db9efe4f5ba07d092013a88bf5ae4 tcpdump-debuginfo-3.9.4-11.el5.i386.rpm

x86_64: 01df957f9cf7cf71afdef3649564dbb1 arpwatch-2.1a13-18.el5.x86_64.rpm e7fc87898e4d015cd6d9e3db48d9ca9f libpcap-devel-0.9.4-11.el5.i386.rpm 52d87731d358492ae67ae75ee92794c7 libpcap-devel-0.9.4-11.el5.x86_64.rpm 3a3db9efe4f5ba07d092013a88bf5ae4 tcpdump-debuginfo-3.9.4-11.el5.i386.rpm fe81bedaac8d616dd5174aa36ede5261 tcpdump-debuginfo-3.9.4-11.el5.x86_64.rpm

Red Hat Enterprise Linux (v. 5 server):

SRPMS: 2d8a9b6ce960508362a7f9d80633b3da tcpdump-3.9.4-11.el5.src.rpm

i386: 8a2efa5cde05859090d27899455fd8ea arpwatch-2.1a13-18.el5.i386.rpm bf509e032af93a166ee85eb44fb9806c libpcap-0.9.4-11.el5.i386.rpm e7fc87898e4d015cd6d9e3db48d9ca9f libpcap-devel-0.9.4-11.el5.i386.rpm e1366b54fb414744f8066cda26ae1cf4 tcpdump-3.9.4-11.el5.i386.rpm 3a3db9efe4f5ba07d092013a88bf5ae4 tcpdump-debuginfo-3.9.4-11.el5.i386.rpm

ia64: 4afabd661d6cdc60e129cfd97cc40a9d arpwatch-2.1a13-18.el5.ia64.rpm f4696ab17886456c3106756ed94158da libpcap-0.9.4-11.el5.ia64.rpm ca57b4643c6670b21ad4aa15b277f728 libpcap-devel-0.9.4-11.el5.ia64.rpm 4f844de6d34ff8b4f80c054e78a7088f tcpdump-3.9.4-11.el5.ia64.rpm fe0efc47f60a0b7292a7faa11b6bbe84 tcpdump-debuginfo-3.9.4-11.el5.ia64.rpm

ppc: 8f4f509649250ef31e2a75bb5b9ed772 arpwatch-2.1a13-18.el5.ppc.rpm a98d4e12b603d3dda4de51f887c48218 libpcap-0.9.4-11.el5.ppc.rpm 1a1556ff29bf547645be3bbecfccdf36 libpcap-0.9.4-11.el5.ppc64.rpm 1db21646d5ecea38de52ca5210bca741 libpcap-devel-0.9.4-11.el5.ppc.rpm 24182f64ea6d93b6d7905d39fb5dcc41 libpcap-devel-0.9.4-11.el5.ppc64.rpm e671300d796e42688d50d074e0c1b5f1 tcpdump-3.9.4-11.el5.ppc.rpm 31c3146286375aa062ac6c08ffd32fee tcpdump-debuginfo-3.9.4-11.el5.ppc.rpm a5a7c8f13c8102951334387a4b56ca77 tcpdump-debuginfo-3.9.4-11.el5.ppc64.rpm

s390x: a1900619ecfb99b2bfb2db7d2b8fda0c arpwatch-2.1a13-18.el5.s390x.rpm e65d46956c9aabb2dc4372e89a773095 libpcap-0.9.4-11.el5.s390.rpm 8d248c1c133eef93c00d12e3e4648cc8 libpcap-0.9.4-11.el5.s390x.rpm 13d1f23310369d5702f1208f9c3d38b4 libpcap-devel-0.9.4-11.el5.s390.rpm d3230eb608c67be9e9090f42b882e6f1 libpcap-devel-0.9.4-11.el5.s390x.rpm e2c3146e79feeea209f2642aaa34fdb6 tcpdump-3.9.4-11.el5.s390x.rpm 3b16d216d6d5567349710f49fed21387 tcpdump-debuginfo-3.9.4-11.el5.s390.rpm ce98f450ecdfdc58669ce05741222081 tcpdump-debuginfo-3.9.4-11.el5.s390x.rpm

x86_64: 01df957f9cf7cf71afdef3649564dbb1 arpwatch-2.1a13-18.el5.x86_64.rpm bf509e032af93a166ee85eb44fb9806c libpcap-0.9.4-11.el5.i386.rpm 5f5a5af8ab76663a97667d1036ec9668 libpcap-0.9.4-11.el5.x86_64.rpm e7fc87898e4d015cd6d9e3db48d9ca9f libpcap-devel-0.9.4-11.el5.i386.rpm 52d87731d358492ae67ae75ee92794c7 libpcap-devel-0.9.4-11.el5.x86_64.rpm 230e4421c10064f6b30666894151f545 tcpdump-3.9.4-11.el5.x86_64.rpm 3a3db9efe4f5ba07d092013a88bf5ae4 tcpdump-debuginfo-3.9.4-11.el5.i386.rpm fe81bedaac8d616dd5174aa36ede5261 tcpdump-debuginfo-3.9.4-11.el5.x86_64.rpm

These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key#package

Summary

References

https://www.cve.org/CVERecord?id=CVE-2007-1218 https://www.cve.org/CVERecord?id=CVE-2007-3798 https://access.redhat.com/security/updates/classification#moderate

Package List


Advisory ID: RHSA-2007:0368-03
Issue date: 2007-11-07
Updated on: 2007-11-07
Product: Red Hat Enterprise Linux
Keywords: overflow crash 802.11

Topic

Relevant Releases Architectures

Red Hat Enterprise Linux Desktop (v. 5 client) - i386, x86_64

RHEL Desktop Workstation (v. 5 client) - i386, x86_64

Red Hat Enterprise Linux (v. 5 server) - i386, ia64, ppc, s390x, x86_64

Bugs Fixed

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here