Explore top 10 tips to secure your open-source projects now. Read More
×
Fix for CVE-2024-2397. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2024-272860364f 2024-05-14 03:27:20.127686 -------------------------------------------------------------------------------- Name : tcpdump Product : Fedora 39 Version : 4.99.4 Release : 4.fc39 URL : http://www.tcpdump.org Summary : A network traffic monitoring tool Description : Tcpdump is a command-line tool for monitoring network traffic. Tcpdump can capture and display the packet headers on a particular network interface or on all interfaces. Tcpdump can display all of the packet headers, or just the ones that match particular criteria. Install tcpdump if you need a program to monitor network traffic. -------------------------------------------------------------------------------- Update Information: Fix for CVE-2024-2397 -------------------------------------------------------------------------------- ChangeLog: * Sun May 5 2024 Michal Ruprich - 14:4.99.4-4 - Resolves: #2274793 - Crafted .pcap file may lead to Denial of Service -------------------------------------------------------------------------------- References: [ 1 ] Bug #2274793 - TRIAGE CVE-2024-2397 tcpdump: Crafted .pcap file may lead to Denial of Service [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2274793 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-272860364f' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be foundat https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Fix for CVE-2024-2397. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2024-e375e28b45 2024-05-11 01:29:32.567772 -------------------------------------------------------------------------------- Name : tcpdump Product : Fedora 40 Version : 4.99.4 Release : 7.fc40 URL : http://www.tcpdump.org Summary : A network traffic monitoring tool Description : Tcpdump is a command-line tool for monitoring network traffic. Tcpdump can capture and display the packet headers on a particular network interface or on all interfaces. Tcpdump can display all of the packet headers, or just the ones that match particular criteria. Install tcpdump if you need a program to monitor network traffic. -------------------------------------------------------------------------------- Update Information: Fix for CVE-2024-2397 -------------------------------------------------------------------------------- ChangeLog: * Sun May 5 2024 Michal Ruprich - 14:4.99.4-7 - Resolves: #2274793 - Crafted .pcap file may lead to Denial of Service -------------------------------------------------------------------------------- References: [ 1 ] Bug #2274793 - TRIAGE CVE-2024-2397 tcpdump: Crafted .pcap file may lead to Denial of Service [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2274793 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-e375e28b45' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be foundat -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network: . Oracle Linux Security Advisory ELSA-2024-0769 https://linux.oracle.com/errata/ELSA-2024-0769.html The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network: x86_64: tcpdump-4.9.3-3.el8_9.1.x86_64.rpm aarch64: tcpdump-4.9.3-3.el8_9.1.aarch64.rpm SRPMS: https://oss.oracle.com:443/ol8/SRPMS-updates//tcpdump-4.9.3-3.el8_9.1.src.rpm Related CVEs: CVE-2021-41043 Description of changes: [14:4.9.3-3.1] - tcpslice: use-after-free in extract_slice() (CVE-2021-41043) _______________________________________________ El-errata mailing list
New versions of libpcap and tcpdump. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2023-de10e674ae 2023-04-28 02:22:23.220524 --------------------------------------------------------------------------------Name : tcpdump Product : Fedora 36 Version : 4.99.4 Release : 1.fc36 URL : https://www.tcpdump.org/ Summary : A network traffic monitoring tool Description : Tcpdump is a command-line tool for monitoring network traffic. Tcpdump can capture and display the packet headers on a particular network interface or on all interfaces. Tcpdump can display all of the packet headers, or just the ones that match particular criteria. Install tcpdump if you need a program to monitor network traffic. --------------------------------------------------------------------------------Update Information: New versions of libpcap and tcpdump --------------------------------------------------------------------------------ChangeLog: * Wed Apr 12 2023 Michal Ruprich - 14:4.99.4-1 - New version 4.99.4 --------------------------------------------------------------------------------References: [ 1 ] Bug #2185319 - libpcap-1.10.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=2185319 [ 2 ] Bug #2185321 - tcpdump-4.99.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=2185321 [ 3 ] Bug #2185499 - CVE-2023-1801 tcpdump: OOB write in SMB decoder [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2185499 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2023-de10e674ae' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the FedoraProject can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list --
New versions of libpcap and tcpdump. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2023-de10e674ae 2023-04-28 02:22:23.220524 --------------------------------------------------------------------------------Name : libpcap Product : Fedora 36 Version : 1.10.4 Release : 1.fc36 URL : https://www.tcpdump.org/ Summary : A system-independent interface for user-level packet capture Description : Libpcap provides a portable framework for low-level network monitoring. Libpcap can provide network statistics collection, security monitoring and network debugging. Since almost every system vendor provides a different interface for packet capture, the libpcap authors created this system-independent API to ease in porting and to alleviate the need for several system-dependent packet capture modules in each application. Install libpcap if you need to do low-level network traffic monitoring on your network. --------------------------------------------------------------------------------Update Information: New versions of libpcap and tcpdump --------------------------------------------------------------------------------ChangeLog: * Wed Apr 12 2023 Michal Ruprich - 14:1.10.4-1 - New version 1.10.4 --------------------------------------------------------------------------------References: [ 1 ] Bug #2185319 - libpcap-1.10.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=2185319 [ 2 ] Bug #2185321 - tcpdump-4.99.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=2185321 [ 3 ] Bug #2185499 - CVE-2023-1801 tcpdump: OOB write in SMB decoder [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2185499 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2023-de10e674ae' at the command line. For more information,refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list --
The SMB protocol decoder in tcpdump version 4.99.3 can perform an out-of-bounds write when decoding a crafted network packet. (CVE-2023-1801) References: . MGASA-2023-0154 - Updated tcpdump packages fix security vulnerability Publication date: 24 Apr 2023 URL: https://advisories.mageia.org/MGASA-2023-0154.html Type: security Affected Mageia releases: 8 CVE: CVE-2023-1801 The SMB protocol decoder in tcpdump version 4.99.3 can perform an out-of-bounds write when decoding a crafted network packet. (CVE-2023-1801) References: - https://bugs.mageia.org/show_bug.cgi?id=31782 - - https://www.cve.org/CVERecord?id=CVE-2023-1801 SRPMS: - 8/core/tcpdump-4.99.2-1.1.mga8 . Mageia 2023-0155 addresses a vulnerability in Wireshark's DNS protocol handler that involves an improper input validation error. Discover the details!. Network Security, Tcpdump Update, Mageia Advisory, Security Fixes. . Severity: Critical. LinuxSecurity.com Team
New versions of libpcap and tcpdump. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2023-33906c7c4a 2023-04-20 04:40:58.216661 --------------------------------------------------------------------------------Name : tcpdump Product : Fedora 38 Version : 4.99.4 Release : 1.fc38 URL : https://www.tcpdump.org/ Summary : A network traffic monitoring tool Description : Tcpdump is a command-line tool for monitoring network traffic. Tcpdump can capture and display the packet headers on a particular network interface or on all interfaces. Tcpdump can display all of the packet headers, or just the ones that match particular criteria. Install tcpdump if you need a program to monitor network traffic. --------------------------------------------------------------------------------Update Information: New versions of libpcap and tcpdump --------------------------------------------------------------------------------ChangeLog: * Wed Apr 12 2023 Michal Ruprich - 14:4.99.4-1 - New version 4.99.4 --------------------------------------------------------------------------------References: [ 1 ] Bug #2185319 - libpcap-1.10.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=2185319 [ 2 ] Bug #2185321 - tcpdump-4.99.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=2185321 [ 3 ] Bug #2185499 - CVE-2023-1801 tcpdump: OOB write in SMB decoder [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2185499 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2023-33906c7c4a' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the FedoraProject can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list --
New versions of libpcap and tcpdump. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2023-33906c7c4a 2023-04-20 04:40:58.216661 --------------------------------------------------------------------------------Name : libpcap Product : Fedora 38 Version : 1.10.4 Release : 1.fc38 URL : https://www.tcpdump.org/ Summary : A system-independent interface for user-level packet capture Description : Libpcap provides a portable framework for low-level network monitoring. Libpcap can provide network statistics collection, security monitoring and network debugging. Since almost every system vendor provides a different interface for packet capture, the libpcap authors created this system-independent API to ease in porting and to alleviate the need for several system-dependent packet capture modules in each application. Install libpcap if you need to do low-level network traffic monitoring on your network. --------------------------------------------------------------------------------Update Information: New versions of libpcap and tcpdump --------------------------------------------------------------------------------ChangeLog: * Wed Apr 12 2023 Michal Ruprich - 14:1.10.4-1 - New version 1.10.4 --------------------------------------------------------------------------------References: [ 1 ] Bug #2185319 - libpcap-1.10.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=2185319 [ 2 ] Bug #2185321 - tcpdump-4.99.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=2185321 [ 3 ] Bug #2185499 - CVE-2023-1801 tcpdump: OOB write in SMB decoder [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2185499 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2023-33906c7c4a' at the command line. For more information,refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list --
Get the latest Linux and open source security news straight to your inbox.