openSUSE-SU-2022:0774-1

Опубликовано: 09 мар. 2022

Источник: suse-cvrf

Описание

Security update for tcpdump

This update for tcpdump fixes the following issues:

CVE-2018-16301: Fixed segfault when handling large files (bsc#1195825).

Список пакетов

openSUSE Leap 15.3

tcpdump-4.9.2-3.18.1

Ссылки

https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/7F42RBJPTM53DGGULUXWD56J42LIIEII/
E-Mail link for openSUSE-SU-2022:0774-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1195825
SUSE Bug 1195825
https://www.suse.com/security/cve/CVE-2018-16301/
SUSE CVE CVE-2018-16301 page

Описание

The command-line argument parser in tcpdump before 4.99.0 has a buffer overflow in tcpdump.c:read_infile(). To trigger this vulnerability the attacker needs to create a 4GB file on the local filesystem and to specify the file name as the value of the -F command-line argument of tcpdump.

Затронутые продукты

openSUSE Leap 15.3:tcpdump-4.9.2-3.18.1

Ссылки

https://www.suse.com/security/cve/CVE-2018-16301.html
CVE-2018-16301
https://bugzilla.suse.com/1153098
SUSE Bug 1153098
https://bugzilla.suse.com/1153332
SUSE Bug 1153332
https://bugzilla.suse.com/1195825
SUSE Bug 1195825

openSUSE-SU-2022:0774-1

Описание

Список пакетов

openSUSE Leap 15.3

Ссылки

Уязвимость: CVE-2018-16301

Описание

Затронутые продукты

Ссылки