ELSA-2017-1871

ELSA-2017-1871 - tcpdump security, bug fix, and enhancement update

Type:SECURITY
Severity:MODERATE
Release Date:2017-08-07

Description


[14:4.9.0-5]
- Resolves: #1441597; use bigger capture buffer than in upstream

[14:4.9.0-4]
- Drop downstream patch (drop root privileges)
- Add libcap-ng as a new build dependency
- Related: #1262283

[14:4.9.0-3]
- Fix tests according to our patches and libpcap version

[14:4.9.0-2]
- Use getnameinfo instead of gethostbyaddr

[14:4.9.0-1]
- New upstream version 4.9.0. Resolves: #1422473
- Add legacy -P switch with warning. Related to #1422473 and #1292056

[14:4.5.1-6]
- Drop root before creating any dump file. Resolves: #1262283

[14:4.5.1-5]
- Use -Q instead of -P to set capture direction. Resolves: #1292056

[14:4.5.1-4]
- Fix segfault with --help option. Resolves: #1297812


Related CVEs


CVE-2015-0261
CVE-2016-7926
CVE-2015-2153
CVE-2015-2154
CVE-2015-2155
CVE-2016-7922
CVE-2016-7923
CVE-2016-7924
CVE-2016-7925
CVE-2016-7929
CVE-2016-7927
CVE-2016-7928
CVE-2016-7931
CVE-2016-7940
CVE-2016-7975
CVE-2016-7993
CVE-2016-8575
CVE-2017-5202
CVE-2017-5205
CVE-2017-5341
CVE-2016-7930
CVE-2016-7932
CVE-2016-7933
CVE-2016-7934
CVE-2016-7935
CVE-2016-7936
CVE-2016-7937
CVE-2016-7938
CVE-2016-7939
CVE-2016-7973
CVE-2016-7974
CVE-2016-7983
CVE-2016-7984
CVE-2016-7985
CVE-2016-7986
CVE-2016-7992
CVE-2016-8574
CVE-2017-5203
CVE-2017-5204
CVE-2017-5342
CVE-2017-5482
CVE-2017-5483
CVE-2017-5484
CVE-2017-5485
CVE-2017-5486

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 7 (aarch64) tcpdump-4.9.0-5.el7.src.rpm8693466109afc8511c5eb36371b702aeELSA-2020-5662
tcpdump-4.9.0-5.el7.aarch64.rpmfb693f341535e42d484341730a6b9a69ELSA-2020-5662
Oracle Linux 7 (x86_64) tcpdump-4.9.0-5.el7.src.rpm8693466109afc8511c5eb36371b702aeELSA-2020-5662
tcpdump-4.9.0-5.el7.x86_64.rpm22ff78d30a01f0ddbaed3d1fb4f0ee95ELSA-2020-5662



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete