ELSA-2020-1604

Опубликовано: 05 мая 2020

Источник: oracle-oval

Платформа: Oracle Linux 8

Описание

ELSA-2020-1604: tcpdump security update (LOW)

[14:4.9.2-6]

Resolves: #1715423 - tcpdump pre creates user and groups unconditionally
Resolves: #1655622 - CVE-2018-19519 Stack-based buffer over-read in print-hncp.c:print_prefix() via crafted pcap

Обновленные пакеты

Oracle Linux 8

Oracle Linux aarch64

tcpdump

4.9.2-6.el8

Oracle Linux x86_64

tcpdump

4.9.2-6.el8

Связанные CVE

CVE-2018-19519

Ссылки на источники

Связанные уязвимости

CVE-2018-19519

CVSS3: 5.5

ubuntu

около 7 лет назад

In tcpdump 4.9.2, a stack-based buffer over-read exists in the print_prefix function of print-hncp.c via crafted packet data because of missing initialization.

CVE-2018-19519

CVSS3: 4.3

redhat

около 7 лет назад

In tcpdump 4.9.2, a stack-based buffer over-read exists in the print_prefix function of print-hncp.c via crafted packet data because of missing initialization.

CVE-2018-19519

CVSS3: 5.5

nvd

около 7 лет назад

In tcpdump 4.9.2, a stack-based buffer over-read exists in the print_prefix function of print-hncp.c via crafted packet data because of missing initialization.

CVE-2018-19519

CVSS3: 5.5

debian

около 7 лет назад

In tcpdump 4.9.2, a stack-based buffer over-read exists in the print_p ...

openSUSE-SU-2018:4252-1

suse-cvrf

около 7 лет назад

Security update for tcpdump