SUSE-SU-2020:3360-1

Опубликовано: 17 нояб. 2020

Источник: suse-cvrf

Описание

Security update for tcpdump

This update for tcpdump fixes the following issues:

CVE-2020-8037: Fixed an issue where PPP decapsulator did not allocate the right buffer size (bsc#1178466).

The previous update of tcpdump already fixed variuous Buffer overflow/overread vulnerabilities [bsc#1153098, bsc#1153332]

CVE-2017-16808 (AoE)
CVE-2018-14468 (FrameRelay)
CVE-2018-14469 (IKEv1)
CVE-2018-14470 (BABEL)
CVE-2018-14466 (AFS/RX)
CVE-2018-14461 (LDP)
CVE-2018-14462 (ICMP)
CVE-2018-14465 (RSVP)
CVE-2018-14464 (LMP)
CVE-2019-15166 (LMP)
CVE-2018-14880 (OSPF6)
CVE-2018-14882 (RPL)
CVE-2018-16227 (802.11)
CVE-2018-16229 (DCCP)
CVE-2018-14467 (BGP)
CVE-2018-14881 (BGP)
CVE-2018-16230 (BGP)
CVE-2018-16300 (BGP)
CVE-2018-14463 (VRRP)
CVE-2019-15167 (VRRP)
CVE-2018-14879 (tcpdump -V)
CVE-2018-16228 (HNCP) is a duplicate of the already fixed CVE-2019-1010220
CVE-2018-16301 (fixed in libpcap)
CVE-2018-16451 (SMB)
CVE-2018-16452 (SMB)
CVE-2018-10103 (SMB - partially fixed, but SMB printing disabled)
CVE-2018-10105 (SMB - too unreliably reproduced, SMB printing disabled)

Список пакетов

Image SLES12-SP4-Azure-BYOS

tcpdump-4.9.2-14.17.1

Image SLES12-SP4-EC2-HVM-BYOS

tcpdump-4.9.2-14.17.1

Image SLES12-SP4-GCE-BYOS

tcpdump-4.9.2-14.17.1

Image SLES12-SP4-OCI-BYOS

tcpdump-4.9.2-14.17.1

Image SLES12-SP4-SAP-Azure

tcpdump-4.9.2-14.17.1

Image SLES12-SP4-SAP-Azure-BYOS

tcpdump-4.9.2-14.17.1

Image SLES12-SP4-SAP-Azure-LI-BYOS-Production

tcpdump-4.9.2-14.17.1

Image SLES12-SP4-SAP-Azure-VLI-BYOS-Production

tcpdump-4.9.2-14.17.1

Image SLES12-SP4-SAP-EC2-HVM

tcpdump-4.9.2-14.17.1

Image SLES12-SP4-SAP-EC2-HVM-BYOS

tcpdump-4.9.2-14.17.1

Image SLES12-SP4-SAP-GCE

tcpdump-4.9.2-14.17.1

Image SLES12-SP4-SAP-GCE-BYOS

tcpdump-4.9.2-14.17.1

Image SLES12-SP4-SAP-OCI-BYOS

tcpdump-4.9.2-14.17.1

Image SLES12-SP5-Azure-BYOS

tcpdump-4.9.2-14.17.1

Image SLES12-SP5-Azure-Basic-On-Demand

tcpdump-4.9.2-14.17.1

Image SLES12-SP5-Azure-HPC-BYOS

tcpdump-4.9.2-14.17.1

Image SLES12-SP5-Azure-HPC-On-Demand

tcpdump-4.9.2-14.17.1

Image SLES12-SP5-Azure-SAP-BYOS

tcpdump-4.9.2-14.17.1

Image SLES12-SP5-Azure-SAP-On-Demand

tcpdump-4.9.2-14.17.1

Image SLES12-SP5-Azure-Standard-On-Demand

tcpdump-4.9.2-14.17.1

Image SLES12-SP5-EC2-BYOS

tcpdump-4.9.2-14.17.1

Image SLES12-SP5-EC2-ECS-On-Demand

tcpdump-4.9.2-14.17.1

Image SLES12-SP5-EC2-On-Demand

tcpdump-4.9.2-14.17.1

Image SLES12-SP5-EC2-SAP-BYOS

tcpdump-4.9.2-14.17.1

Image SLES12-SP5-EC2-SAP-On-Demand

tcpdump-4.9.2-14.17.1

Image SLES12-SP5-GCE-BYOS

tcpdump-4.9.2-14.17.1

Image SLES12-SP5-GCE-On-Demand

tcpdump-4.9.2-14.17.1

Image SLES12-SP5-GCE-SAP-BYOS

tcpdump-4.9.2-14.17.1

Image SLES12-SP5-GCE-SAP-On-Demand

tcpdump-4.9.2-14.17.1

Image SLES12-SP5-OCI-BYOS-BYOS

tcpdump-4.9.2-14.17.1

Image SLES12-SP5-OCI-BYOS-SAP-BYOS

tcpdump-4.9.2-14.17.1

Image SLES12-SP5-SAP-Azure-LI-BYOS-Production

tcpdump-4.9.2-14.17.1

Image SLES12-SP5-SAP-Azure-VLI-BYOS-Production

tcpdump-4.9.2-14.17.1

SUSE Linux Enterprise Server 12 SP5

tcpdump-4.9.2-14.17.1

SUSE Linux Enterprise Server for SAP Applications 12 SP5

tcpdump-4.9.2-14.17.1

Ссылки

https://www.suse.com/support/update/announcement/2020/suse-su-20203360-1/
Link for SUSE-SU-2020:3360-1
https://lists.suse.com/pipermail/sle-security-updates/2020-November/007788.html
E-Mail link for SUSE-SU-2020:3360-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1153098
SUSE Bug 1153098
https://bugzilla.suse.com/1153332
SUSE Bug 1153332
https://bugzilla.suse.com/1178466
SUSE Bug 1178466
https://www.suse.com/security/cve/CVE-2017-16808/
SUSE CVE CVE-2017-16808 page
https://www.suse.com/security/cve/CVE-2018-10103/
SUSE CVE CVE-2018-10103 page
https://www.suse.com/security/cve/CVE-2018-10105/
SUSE CVE CVE-2018-10105 page
https://www.suse.com/security/cve/CVE-2018-14461/
SUSE CVE CVE-2018-14461 page
https://www.suse.com/security/cve/CVE-2018-14462/
SUSE CVE CVE-2018-14462 page
https://www.suse.com/security/cve/CVE-2018-14463/
SUSE CVE CVE-2018-14463 page
https://www.suse.com/security/cve/CVE-2018-14464/
SUSE CVE CVE-2018-14464 page
https://www.suse.com/security/cve/CVE-2018-14465/
SUSE CVE CVE-2018-14465 page
https://www.suse.com/security/cve/CVE-2018-14466/
SUSE CVE CVE-2018-14466 page
https://www.suse.com/security/cve/CVE-2018-14467/
SUSE CVE CVE-2018-14467 page
https://www.suse.com/security/cve/CVE-2018-14468/
SUSE CVE CVE-2018-14468 page
https://www.suse.com/security/cve/CVE-2018-14469/
SUSE CVE CVE-2018-14469 page
https://www.suse.com/security/cve/CVE-2018-14470/
SUSE CVE CVE-2018-14470 page
https://www.suse.com/security/cve/CVE-2018-14879/
SUSE CVE CVE-2018-14879 page

Описание

tcpdump before 4.9.3 has a heap-based buffer over-read related to aoe_print in print-aoe.c and lookup_emem in addrtoname.c.

Затронутые продукты

Image SLES12-SP4-Azure-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-EC2-HVM-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-GCE-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-OCI-BYOS:tcpdump-4.9.2-14.17.1

Ссылки

https://www.suse.com/security/cve/CVE-2017-16808.html
CVE-2017-16808
https://bugzilla.suse.com/1068716
SUSE Bug 1068716
https://bugzilla.suse.com/1153098
SUSE Bug 1153098

Описание

tcpdump before 4.9.3 mishandles the printing of SMB data (issue 1 of 2).

Затронутые продукты

Image SLES12-SP4-Azure-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-EC2-HVM-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-GCE-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-OCI-BYOS:tcpdump-4.9.2-14.17.1

Ссылки

https://www.suse.com/security/cve/CVE-2018-10103.html
CVE-2018-10103
https://bugzilla.suse.com/1153098
SUSE Bug 1153098

Описание

tcpdump before 4.9.3 mishandles the printing of SMB data (issue 2 of 2).

Затронутые продукты

Image SLES12-SP4-Azure-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-EC2-HVM-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-GCE-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-OCI-BYOS:tcpdump-4.9.2-14.17.1

Ссылки

https://www.suse.com/security/cve/CVE-2018-10105.html
CVE-2018-10105
https://bugzilla.suse.com/1153098
SUSE Bug 1153098

Описание

The LDP parser in tcpdump before 4.9.3 has a buffer over-read in print-ldp.c:ldp_tlv_print().

Затронутые продукты

Image SLES12-SP4-Azure-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-EC2-HVM-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-GCE-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-OCI-BYOS:tcpdump-4.9.2-14.17.1

Ссылки

https://www.suse.com/security/cve/CVE-2018-14461.html
CVE-2018-14461
https://bugzilla.suse.com/1153098
SUSE Bug 1153098

Описание

The ICMP parser in tcpdump before 4.9.3 has a buffer over-read in print-icmp.c:icmp_print().

Затронутые продукты

Image SLES12-SP4-Azure-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-EC2-HVM-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-GCE-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-OCI-BYOS:tcpdump-4.9.2-14.17.1

Ссылки

https://www.suse.com/security/cve/CVE-2018-14462.html
CVE-2018-14462
https://bugzilla.suse.com/1153098
SUSE Bug 1153098

Описание

The VRRP parser in tcpdump before 4.9.3 has a buffer over-read in print-vrrp.c:vrrp_print() for VRRP version 2, a different vulnerability than CVE-2019-15167.

Затронутые продукты

Image SLES12-SP4-Azure-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-EC2-HVM-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-GCE-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-OCI-BYOS:tcpdump-4.9.2-14.17.1

Ссылки

https://www.suse.com/security/cve/CVE-2018-14463.html
CVE-2018-14463
https://bugzilla.suse.com/1153098
SUSE Bug 1153098

Описание

The LMP parser in tcpdump before 4.9.3 has a buffer over-read in print-lmp.c:lmp_print_data_link_subobjs().

Затронутые продукты

Image SLES12-SP4-Azure-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-EC2-HVM-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-GCE-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-OCI-BYOS:tcpdump-4.9.2-14.17.1

Ссылки

https://www.suse.com/security/cve/CVE-2018-14464.html
CVE-2018-14464
https://bugzilla.suse.com/1153098
SUSE Bug 1153098

Описание

The RSVP parser in tcpdump before 4.9.3 has a buffer over-read in print-rsvp.c:rsvp_obj_print().

Затронутые продукты

Image SLES12-SP4-Azure-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-EC2-HVM-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-GCE-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-OCI-BYOS:tcpdump-4.9.2-14.17.1

Ссылки

https://www.suse.com/security/cve/CVE-2018-14465.html
CVE-2018-14465
https://bugzilla.suse.com/1153098
SUSE Bug 1153098

Описание

The Rx parser in tcpdump before 4.9.3 has a buffer over-read in print-rx.c:rx_cache_find() and rx_cache_insert().

Затронутые продукты

Image SLES12-SP4-Azure-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-EC2-HVM-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-GCE-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-OCI-BYOS:tcpdump-4.9.2-14.17.1

Ссылки

https://www.suse.com/security/cve/CVE-2018-14466.html
CVE-2018-14466
https://bugzilla.suse.com/1153098
SUSE Bug 1153098
https://bugzilla.suse.com/1166972
SUSE Bug 1166972

Описание

The BGP parser in tcpdump before 4.9.3 has a buffer over-read in print-bgp.c:bgp_capabilities_print() (BGP_CAPCODE_MP).

Затронутые продукты

Image SLES12-SP4-Azure-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-EC2-HVM-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-GCE-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-OCI-BYOS:tcpdump-4.9.2-14.17.1

Ссылки

https://www.suse.com/security/cve/CVE-2018-14467.html
CVE-2018-14467
https://bugzilla.suse.com/1153098
SUSE Bug 1153098

Описание

The FRF.16 parser in tcpdump before 4.9.3 has a buffer over-read in print-fr.c:mfr_print().

Затронутые продукты

Image SLES12-SP4-Azure-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-EC2-HVM-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-GCE-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-OCI-BYOS:tcpdump-4.9.2-14.17.1

Ссылки

https://www.suse.com/security/cve/CVE-2018-14468.html
CVE-2018-14468
https://bugzilla.suse.com/1153098
SUSE Bug 1153098

Описание

The IKEv1 parser in tcpdump before 4.9.3 has a buffer over-read in print-isakmp.c:ikev1_n_print().

Затронутые продукты

Image SLES12-SP4-Azure-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-EC2-HVM-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-GCE-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-OCI-BYOS:tcpdump-4.9.2-14.17.1

Ссылки

https://www.suse.com/security/cve/CVE-2018-14469.html
CVE-2018-14469
https://bugzilla.suse.com/1153098
SUSE Bug 1153098

Описание

The Babel parser in tcpdump before 4.9.3 has a buffer over-read in print-babel.c:babel_print_v2().

Затронутые продукты

Image SLES12-SP4-Azure-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-EC2-HVM-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-GCE-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-OCI-BYOS:tcpdump-4.9.2-14.17.1

Ссылки

https://www.suse.com/security/cve/CVE-2018-14470.html
CVE-2018-14470
https://bugzilla.suse.com/1153098
SUSE Bug 1153098

Описание

The command-line argument parser in tcpdump before 4.9.3 has a buffer overflow in tcpdump.c:get_next_file().

Затронутые продукты

Image SLES12-SP4-Azure-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-EC2-HVM-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-GCE-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-OCI-BYOS:tcpdump-4.9.2-14.17.1

Ссылки

https://www.suse.com/security/cve/CVE-2018-14879.html
CVE-2018-14879
https://bugzilla.suse.com/1153098
SUSE Bug 1153098

Описание

The OSPFv3 parser in tcpdump before 4.9.3 has a buffer over-read in print-ospf6.c:ospf6_print_lshdr().

Затронутые продукты

Image SLES12-SP4-Azure-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-EC2-HVM-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-GCE-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-OCI-BYOS:tcpdump-4.9.2-14.17.1

Ссылки

https://www.suse.com/security/cve/CVE-2018-14880.html
CVE-2018-14880
https://bugzilla.suse.com/1153098
SUSE Bug 1153098

Описание

The BGP parser in tcpdump before 4.9.3 has a buffer over-read in print-bgp.c:bgp_capabilities_print() (BGP_CAPCODE_RESTART).

Затронутые продукты

Image SLES12-SP4-Azure-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-EC2-HVM-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-GCE-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-OCI-BYOS:tcpdump-4.9.2-14.17.1

Ссылки

https://www.suse.com/security/cve/CVE-2018-14881.html
CVE-2018-14881
https://bugzilla.suse.com/1153098
SUSE Bug 1153098

Описание

The ICMPv6 parser in tcpdump before 4.9.3 has a buffer over-read in print-icmp6.c.

Затронутые продукты

Image SLES12-SP4-Azure-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-EC2-HVM-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-GCE-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-OCI-BYOS:tcpdump-4.9.2-14.17.1

Ссылки

https://www.suse.com/security/cve/CVE-2018-14882.html
CVE-2018-14882
https://bugzilla.suse.com/1153098
SUSE Bug 1153098

Описание

The IEEE 802.11 parser in tcpdump before 4.9.3 has a buffer over-read in print-802_11.c for the Mesh Flags subfield.

Затронутые продукты

Image SLES12-SP4-Azure-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-EC2-HVM-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-GCE-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-OCI-BYOS:tcpdump-4.9.2-14.17.1

Ссылки

https://www.suse.com/security/cve/CVE-2018-16227.html
CVE-2018-16227
https://bugzilla.suse.com/1153098
SUSE Bug 1153098

Описание

The HNCP parser in tcpdump before 4.9.3 has a buffer over-read in print-hncp.c:print_prefix().

Затронутые продукты

Image SLES12-SP4-Azure-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-EC2-HVM-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-GCE-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-OCI-BYOS:tcpdump-4.9.2-14.17.1

Ссылки

https://www.suse.com/security/cve/CVE-2018-16228.html
CVE-2018-16228
https://bugzilla.suse.com/1153098
SUSE Bug 1153098

Описание

The DCCP parser in tcpdump before 4.9.3 has a buffer over-read in print-dccp.c:dccp_print_option().

Затронутые продукты

Image SLES12-SP4-Azure-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-EC2-HVM-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-GCE-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-OCI-BYOS:tcpdump-4.9.2-14.17.1

Ссылки

https://www.suse.com/security/cve/CVE-2018-16229.html
CVE-2018-16229
https://bugzilla.suse.com/1153098
SUSE Bug 1153098

Описание

The BGP parser in tcpdump before 4.9.3 has a buffer over-read in print-bgp.c:bgp_attr_print() (MP_REACH_NLRI).

Затронутые продукты

Image SLES12-SP4-Azure-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-EC2-HVM-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-GCE-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-OCI-BYOS:tcpdump-4.9.2-14.17.1

Ссылки

https://www.suse.com/security/cve/CVE-2018-16230.html
CVE-2018-16230
https://bugzilla.suse.com/1153098
SUSE Bug 1153098

Описание

The BGP parser in tcpdump before 4.9.3 allows stack consumption in print-bgp.c:bgp_attr_print() because of unlimited recursion.

Затронутые продукты

Image SLES12-SP4-Azure-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-EC2-HVM-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-GCE-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-OCI-BYOS:tcpdump-4.9.2-14.17.1

Ссылки

https://www.suse.com/security/cve/CVE-2018-16300.html
CVE-2018-16300
https://bugzilla.suse.com/1153098
SUSE Bug 1153098

Описание

The command-line argument parser in tcpdump before 4.99.0 has a buffer overflow in tcpdump.c:read_infile(). To trigger this vulnerability the attacker needs to create a 4GB file on the local filesystem and to specify the file name as the value of the -F command-line argument of tcpdump.

Затронутые продукты

Image SLES12-SP4-Azure-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-EC2-HVM-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-GCE-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-OCI-BYOS:tcpdump-4.9.2-14.17.1

Ссылки

https://www.suse.com/security/cve/CVE-2018-16301.html
CVE-2018-16301
https://bugzilla.suse.com/1153098
SUSE Bug 1153098
https://bugzilla.suse.com/1153332
SUSE Bug 1153332
https://bugzilla.suse.com/1195825
SUSE Bug 1195825

Описание

The SMB parser in tcpdump before 4.9.3 has buffer over-reads in print-smb.c:print_trans() for \MAILSLOT\BROWSE and \PIPE\LANMAN.

Затронутые продукты

Image SLES12-SP4-Azure-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-EC2-HVM-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-GCE-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-OCI-BYOS:tcpdump-4.9.2-14.17.1

Ссылки

https://www.suse.com/security/cve/CVE-2018-16451.html
CVE-2018-16451
https://bugzilla.suse.com/1153098
SUSE Bug 1153098

Описание

The SMB parser in tcpdump before 4.9.3 has stack exhaustion in smbutil.c:smb_fdata() via recursion.

Затронутые продукты

Image SLES12-SP4-Azure-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-EC2-HVM-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-GCE-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-OCI-BYOS:tcpdump-4.9.2-14.17.1

Ссылки

https://www.suse.com/security/cve/CVE-2018-16452.html
CVE-2018-16452
https://bugzilla.suse.com/1153098
SUSE Bug 1153098

Описание

tcpdump.org tcpdump 4.9.2 is affected by: CWE-126: Buffer Over-read. The impact is: May expose Saved Frame Pointer, Return Address etc. on stack. The component is: line 234: "ND_PRINT((ndo, "%s", buf));", in function named "print_prefix", in "print-hncp.c". The attack vector is: The victim must open a specially crafted pcap file.

Затронутые продукты

Image SLES12-SP4-Azure-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-EC2-HVM-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-GCE-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-OCI-BYOS:tcpdump-4.9.2-14.17.1

Ссылки

https://www.suse.com/security/cve/CVE-2019-1010220.html
CVE-2019-1010220
https://bugzilla.suse.com/1142439
SUSE Bug 1142439
https://bugzilla.suse.com/1153098
SUSE Bug 1153098

Описание

lmp_print_data_link_subobjs() in print-lmp.c in tcpdump before 4.9.3 lacks certain bounds checks.

Затронутые продукты

Image SLES12-SP4-Azure-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-EC2-HVM-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-GCE-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-OCI-BYOS:tcpdump-4.9.2-14.17.1

Ссылки

https://www.suse.com/security/cve/CVE-2019-15166.html
CVE-2019-15166
https://bugzilla.suse.com/1153098
SUSE Bug 1153098

Описание

The VRRP parser in tcpdump before 4.9.3 has a buffer over-read in print-vrrp.c:vrrp_print() for VRRP version 3, a different vulnerability than CVE-2018-14463.

Затронутые продукты

Image SLES12-SP4-Azure-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-EC2-HVM-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-GCE-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-OCI-BYOS:tcpdump-4.9.2-14.17.1

Ссылки

https://www.suse.com/security/cve/CVE-2019-15167.html
CVE-2019-15167
https://bugzilla.suse.com/1153098
SUSE Bug 1153098

Описание

The ppp decapsulator in tcpdump 4.9.3 can be convinced to allocate a large amount of memory.

Затронутые продукты

Image SLES12-SP4-Azure-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-EC2-HVM-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-GCE-BYOS:tcpdump-4.9.2-14.17.1

Image SLES12-SP4-OCI-BYOS:tcpdump-4.9.2-14.17.1

Ссылки

https://www.suse.com/security/cve/CVE-2020-8037.html
CVE-2020-8037
https://bugzilla.suse.com/1178466
SUSE Bug 1178466

SUSE-SU-2020:3360-1

Описание

Список пакетов

Image SLES12-SP4-Azure-BYOS

Image SLES12-SP4-EC2-HVM-BYOS

Image SLES12-SP4-GCE-BYOS

Image SLES12-SP4-OCI-BYOS

Image SLES12-SP4-SAP-Azure

Image SLES12-SP4-SAP-Azure-BYOS

Image SLES12-SP4-SAP-Azure-LI-BYOS-Production

Image SLES12-SP4-SAP-Azure-VLI-BYOS-Production

Image SLES12-SP4-SAP-EC2-HVM

Image SLES12-SP4-SAP-EC2-HVM-BYOS

Image SLES12-SP4-SAP-GCE

Image SLES12-SP4-SAP-GCE-BYOS

Image SLES12-SP4-SAP-OCI-BYOS

Image SLES12-SP5-Azure-BYOS

Image SLES12-SP5-Azure-Basic-On-Demand

Image SLES12-SP5-Azure-HPC-BYOS

Image SLES12-SP5-Azure-HPC-On-Demand

Image SLES12-SP5-Azure-SAP-BYOS

Image SLES12-SP5-Azure-SAP-On-Demand

Image SLES12-SP5-Azure-Standard-On-Demand

Image SLES12-SP5-EC2-BYOS

Image SLES12-SP5-EC2-ECS-On-Demand

Image SLES12-SP5-EC2-On-Demand

Image SLES12-SP5-EC2-SAP-BYOS

Image SLES12-SP5-EC2-SAP-On-Demand

Image SLES12-SP5-GCE-BYOS

Image SLES12-SP5-GCE-On-Demand

Image SLES12-SP5-GCE-SAP-BYOS

Image SLES12-SP5-GCE-SAP-On-Demand

Image SLES12-SP5-OCI-BYOS-BYOS

Image SLES12-SP5-OCI-BYOS-SAP-BYOS

Image SLES12-SP5-SAP-Azure-LI-BYOS-Production

Image SLES12-SP5-SAP-Azure-VLI-BYOS-Production

SUSE Linux Enterprise Server 12 SP5

SUSE Linux Enterprise Server for SAP Applications 12 SP5

Ссылки

Уязвимость: CVE-2017-16808

Описание

Затронутые продукты

Ссылки

Уязвимость: CVE-2018-10103

Описание

Затронутые продукты

Ссылки

Уязвимость: CVE-2018-10105

Описание

Затронутые продукты

Ссылки

Уязвимость: CVE-2018-14461

Описание

Затронутые продукты

Ссылки

Уязвимость: CVE-2018-14462

Описание

Затронутые продукты

Ссылки

Уязвимость: CVE-2018-14463

Описание

Затронутые продукты

Ссылки

Уязвимость: CVE-2018-14464

Описание

Затронутые продукты

Ссылки

Уязвимость: CVE-2018-14465

Описание

Затронутые продукты

Ссылки

Уязвимость: CVE-2018-14466

Описание

Затронутые продукты

Ссылки

Уязвимость: CVE-2018-14467

Описание

Затронутые продукты

Ссылки

Уязвимость: CVE-2018-14468