Oval Definition:oval:com.redhat.rhsa:def:20050417
Revision Date:2005-05-11Version:503
Title:RHSA-2005:417: tcpdump security update (Moderate)
Description:Tcpdump is a command-line tool for monitoring network traffic.

Several denial of service bugs were found in the way tcpdump processes certain network packets. It is possible for an attacker to inject a carefully crafted packet onto the network, crashing a running tcpdump session. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the names CAN-2005-1278, CAN-2005-1279, and CAN-2005-1280 to these issues.

The tcpdump utility can now write a file larger than 2 GB.

Users of tcpdump are advised to upgrade to these erratum packages, which contain backported security patches and are not vulnerable to these issues.
Family:unixClass:patch
Status:Reference(s):CVE-2005-1278
CVE-2005-1279
CVE-2005-1280
RHSA-2005:417-02
Platform(s):Red Hat Enterprise Linux 4
Product(s):
Definition Synopsis
  • Red Hat Enterprise Linux 4 is installed
  • AND Package Information
  • libpcap is earlier than 14:0.8.3-9.RHEL4
  • AND libpcap is signed with Red Hat master key
  • OR
  • tcpdump is earlier than 14:3.8.2-9.RHEL4
  • AND tcpdump is signed with Red Hat master key
  • OR
  • arpwatch is earlier than 14:2.1a13-9.RHEL4
  • AND arpwatch is signed with Red Hat master key
    • BACK