RLSA-2020:4760

Source
https://errata.rockylinux.org/RLSA-2020:4760
Import Source
https://storage.googleapis.com/resf-osv-data/RLSA-2020:4760.json
JSON Data
https://api.test.osv.dev/v1/vulns/RLSA-2020:4760
Related
Published
2020-11-03T12:33:49Z
Modified
2023-02-02T14:10:10.614355Z
Severity
  • 9.8 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
Summary
Moderate: tcpdump security, bug fix, and enhancement update
Details

The tcpdump packages contain the tcpdump utility for monitoring network traffic. The tcpdump utility can capture and display the packet headers on a particular network interface or on all interfaces.

The following packages have been upgraded to a later upstream version: tcpdump (4.9.3). (BZ#1804063)

Security Fix(es):

  • tcpdump: SMB data printing mishandled (CVE-2018-10103)

  • tcpdump: SMB data printing mishandled (CVE-2018-10105)

  • tcpdump: Out of bounds read/write in getnextfile() in tcpdump.c (CVE-2018-14879)

  • tcpdump: Buffer over-read in ldptlvprint() function in print-ldp.c (CVE-2018-14461)

  • tcpdump: Buffer over-read in icmp_print() function in print-icmp.c (CVE-2018-14462)

  • tcpdump: Buffer over-read in vrrp_print() function in print-vrrp.c (CVE-2018-14463)

  • tcpdump: Buffer over-read in lmpprintdatalinksubobjs() function in print-lmp.c (CVE-2018-14464)

  • tcpdump: Buffer over-read in rsvpobjprint() function in print-rsvp.c (CVE-2018-14465)

  • tcpdump: Buffer over-read in print-icmp6.c (CVE-2018-14466)

  • tcpdump: Buffer over-read in bgpcapabilitiesprint() in print-bgp.c (CVE-2018-14467)

  • tcpdump: Buffer over-read in mfr_print() function in print-fr.c (CVE-2018-14468)

  • tcpdump: Buffer over-read in ikev1nprint() function in print-isakmp.c (CVE-2018-14469)

  • tcpdump: Buffer over-read in babelprintv2() in print-babel.c (CVE-2018-14470)

  • tcpdump: Buffer over-read in ospf6printlshdr() function in print-ospf6.c (CVE-2018-14880)

  • tcpdump: Buffer over-read in bgpcapabilitiesprint() function in print-bgp.c (CVE-2018-14881)

  • tcpdump: Buffer over-read in function rpldioprintopt in print-icmp6.c (CVE-2018-14882)

  • tcpdump: Buffer over-read in print-802_11.c (CVE-2018-16227)

  • tcpdump: Access to uninitialized buffer in print_prefix() function in print-hncp.c (CVE-2018-16228)

  • tcpdump: Buffer over-read in dccpprintoption() function in print-dccp.c (CVE-2018-16229)

  • tcpdump: Buffer over-read in bgpattrprint() function in print-bgp.c (CVE-2018-16230)

  • tcpdump: Resource exhaustion in bgpattrprint() function in print-bgp.c (CVE-2018-16300)

  • tcpdump: Buffer over-read in print_trans() function in print-smb.c (CVE-2018-16451)

  • tcpdump: Resource exhaustion in smb_fdata() funtion in smbutil.c (CVE-2018-16452)

  • tcpdump: Buffer overflow in lmpprintdatalinksubobjs() in print-lmp.c (CVE-2019-15166)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the Rocky Linux 8.3 Release Notes linked from the References section.

References
Credits
    • Rocky Enterprise Software Foundation
    • Red Hat

Affected packages

Rocky Linux:8 / tcpdump

Package

Name
tcpdump
Purl
pkg:rpm/rocky-linux/tcpdump?distro=rocky-linux-8-4-legacy&epoch=4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4:4.9.3-1.el8