Date:         Thu, 15 Nov 2007 14:11:54 -0600
Reply-To:     Troy Dawson 
Sender:       Security Errata for Scientific Linux
              
From:         Troy Dawson 
Subject:      Security ERRATA for tcpdump on SL4.x i386/x86_64
Comments: To: scientific-linux-errata@fnal.gov

Synopsis:	Moderate: tcpdump security and bug fix update
Issue date:	2007-11-15
CVE Names:	CVE-2007-1218 CVE-2007-3798

Moritz Jodeit discovered a denial of service bug in the tcpdump IEEE
802.11 processing code. An attacker could inject a carefully crafted frame
onto the IEEE 802.11 network that could crash a running tcpdump session if
a certain link type was explicitly specified. (CVE-2007-1218)

An integer overflow flaw was found in tcpdump's BGP processing code. An
attacker could execute arbitrary code with the privilege of the pcap user
by injecting a crafted frame onto the network. (CVE-2007-3798)

In addition, the following bugs have been addressed:

* if called with -C and -W switches, tcpdump would create the first
savefile with the privileges of the user that executed tcpdump (usually
root), rather than with ones of the pcap user.  This could result in the
inability to save the complete traffic log file properly without the
immediate notice of the user running tcpdump.

* the arpwatch service initialization script would exit prematurely,
returning a successful exit status incorrectly and preventing the status
command from running in case networking is not available.

SL 4.x

   SRPMS:
tcpdump-3.8.2-12.el4.src.rpm
   i386:
arpwatch-2.1a13-12.el4.i386.rpm
libpcap-0.8.3-12.el4.i386.rpm
tcpdump-3.8.2-12.el4.i386.rpm

   x86_64:
arpwatch-2.1a13-12.el4.x86_64.rpm
libpcap-0.8.3-12.el4.i386.rpm
libpcap-0.8.3-12.el4.x86_64.rpm
tcpdump-3.8.2-12.el4.x86_64.rpm

-Connie Sieh
-Troy Dawson

SciLinux: CVE-2007-1218 tcpdump SL4.x i386/x86_64

Moderate: tcpdump security and bug fix update

Summary

Date:         Thu, 15 Nov 2007 14:11:54 -0600Reply-To:     Troy Dawson Sender:       Security Errata for Scientific Linux              From:         Troy Dawson Subject:      Security ERRATA for tcpdump on SL4.x i386/x86_64Comments: To: scientific-linux-errata@fnal.govSynopsis:	Moderate: tcpdump security and bug fix updateIssue date:	2007-11-15CVE Names:	CVE-2007-1218 CVE-2007-3798Moritz Jodeit discovered a denial of service bug in the tcpdump IEEE802.11 processing code. An attacker could inject a carefully crafted frameonto the IEEE 802.11 network that could crash a running tcpdump session ifa certain link type was explicitly specified. (CVE-2007-1218)An integer overflow flaw was found in tcpdump's BGP processing code. Anattacker could execute arbitrary code with the privilege of the pcap userby injecting a crafted frame onto the network. (CVE-2007-3798)In addition, the following bugs have been addressed:* if called with -C and -W switches, tcpdump would create the firstsavefile with the privileges of the user that executed tcpdump (usuallyroot), rather than with ones of the pcap user.  This could result in theinability to save the complete traffic log file properly without theimmediate notice of the user running tcpdump.* the arpwatch service initialization script would exit prematurely,returning a successful exit status incorrectly and preventing the statuscommand from running in case networking is not available.SL 4.x   SRPMS:tcpdump-3.8.2-12.el4.src.rpm   i386:arpwatch-2.1a13-12.el4.i386.rpmlibpcap-0.8.3-12.el4.i386.rpmtcpdump-3.8.2-12.el4.i386.rpm   x86_64:arpwatch-2.1a13-12.el4.x86_64.rpmlibpcap-0.8.3-12.el4.i386.rpmlibpcap-0.8.3-12.el4.x86_64.rpmtcpdump-3.8.2-12.el4.x86_64.rpm-Connie Sieh-Troy Dawson



Security Fixes

Severity

Related News

The End of the Road for Linux 6.11: A Call to Upgrade to Kernel 6.12
3 - 5 min read
The Linux kernel community recently issued an EOL announcement regarding the 6.11 kernel series, urging sysadmins to upgrade quickly to 6.12 . This
A Linux Admin
3 - 6 min read
As 2025 approaches, we Linux admins are facing new and often unseen cloud-native security obstacles. While skilled at mitigating known risks,
Leveraging Insights from the Linux Foundation
3 - 5 min read
The Linux Foundation's recent Census III report provides critical insights for Linux administrators, information security professionals, and anyone
Chrome 131 Released: Emergency Security Update Fixes Over a Dozen Significant Vulns
3 - 6 min read
Google recently unveiled a critical security update to their popular web browser, Google Chrome, addressing over a dozen significant security
From Wayland Fixes to Security Boosts: Examining Qt 6.8.1
3 - 6 min read
The recent Qt 6.8.1 release brings significant updates and improvements, strengthening its reputation as a secure and reliable application
Exploring Arch Linux 2024.12.01: Security Implications & Notable Enhancements for Linux Admins
3 - 6 min read
The Arch Linux 2024.12.01 ISO release marks an impressive milestone, offering cutting-edge updates that enhance functionality, streamline
Deck the Halls with Enhanced Security: Linux Kernel 6.13
3 - 5 min read
As Linux admins and infosec professionals prepare for the holiday season, there's much cause for celebration this year! Linus Torvalds recently made
Lessons from Bootkitty: Securing Linux Systems Against UEFI Intrusions
3 - 5 min read
New Linux security threats mark critical junctures that challenge existing policies and test security protocols to their limit. One such milestone

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved