Описание
Security update for tcpdump
tcpdump was updated to fix five vulnerabilities in protocol printers
When running tcpdump, a remote unauthenticated user could have crashed the application or, potentially, execute arbitrary code by injecting crafted packages into the network.
The following vulnerabilities were fixed:
- IPv6 mobility printer remote DoS (CVE-2015-0261, bnc#922220)
- PPP printer remote DoS (CVE-2014-9140, bnc#923142)
- force printer remote DoS (CVE-2015-2155, bnc#922223)
- ethernet printer remote DoS (CVE-2015-2154, bnc#922222)
- tcp printer remote DoS (CVE-2015-2153, bnc#922221)
Список пакетов
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Server 12
SUSE Linux Enterprise Server for SAP Applications 12
Ссылки
- Link for SUSE-SU-2015:0679-1
- E-Mail link for SUSE-SU-2015:0679-1
- SUSE Security Ratings
- SUSE Bug 922220
- SUSE Bug 922221
- SUSE Bug 922222
- SUSE Bug 922223
- SUSE Bug 923142
- SUSE CVE CVE-2014-9140 page
- SUSE CVE CVE-2015-0261 page
- SUSE CVE CVE-2015-2153 page
- SUSE CVE CVE-2015-2154 page
- SUSE CVE CVE-2015-2155 page
Описание
Buffer overflow in the ppp_hdlc function in print-ppp.c in tcpdump 4.6.2 and earlier allows remote attackers to cause a denial of service (crash) cia a crafted PPP packet.
Затронутые продукты
Ссылки
- CVE-2014-9140
- SUSE Bug 923142
Описание
Integer signedness error in the mobility_opt_print function in the IPv6 mobility printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (out-of-bounds read and crash) or possibly execute arbitrary code via a negative length value.
Затронутые продукты
Ссылки
- CVE-2015-0261
- SUSE Bug 922220
Описание
The rpki_rtr_pdu_print function in print-rpki-rtr.c in the TCP printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (out-of-bounds read or write and crash) via a crafted header length in an RPKI-RTR Protocol Data Unit (PDU).
Затронутые продукты
Ссылки
- CVE-2015-2153
- SUSE Bug 922221
- SUSE Bug 922222
- SUSE Bug 922223
Описание
The osi_print_cksum function in print-isoclns.c in the ethernet printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a crafted (1) length, (2) offset, or (3) base pointer checksum value.
Затронутые продукты
Ссылки
- CVE-2015-2154
- SUSE Bug 922222
Описание
The force printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unspecified vectors.
Затронутые продукты
Ссылки
- CVE-2015-2155
- SUSE Bug 922220
- SUSE Bug 922221
- SUSE Bug 922222
- SUSE Bug 922223