SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Application (Generic)  >   Tcpdump Vendors:   Tcpdump.org
(Red Hat Issues Fix for RH Enterprise Linux) Tcpdump Can Be Crashed By a Remote User Sending a Malicious ISAKMP Packet
SecurityTracker Alert ID:  1008738
SecurityTracker URL:  http://securitytracker.com/id/1008738
CVE Reference:   CVE-2003-0989, CVE-2004-0057   (Links to External Site)
Date:  Jan 16 2004
Impact:   Denial of service via network
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): 3.8.1 and prior versions
Description:   Several vulnerabilities were reported in tcpdump in the processing of ISAKMP packets. A remote user can cause tcmpdump to crash or to enter an infinite loop.

It is reported that the rawprint() function in print-isakmp.c fails to validate its input arguments [CVE: CVE-2004-0057]. A remote user can send a specially crafted ISAKMP packet to cause the tcpdump process to crash. Red Hat credits Jonathan Heusser with discovering this flaw. Version 3.8.1 and prior versions are affected.

It is also reported that versions prior to 3.8.1 contain flaws that allow a remote user to force tcpdump to enter an infinite loop [CVE: CVE-2003-0989]. According to Red Hat, George Bakos discovered these flaws.

Impact:   A remote user can cause the tcpdump process to crash or to enter an endless loop.
Solution:   Red Hat has released a fix.

Red Hat Enterprise Linux AS (Advanced Server) version 2.1:

SRPMS:
ftp://updates.redhat.com/2.1AS/en/os/SRPMS/tcpdump-3.6.2-12.2.1AS.5.src.rpm

i386:
Available from Red Hat Network: arpwatch-2.1a11-12.2.1AS.5.i386.rpm
Available from Red Hat Network: libpcap-0.6.2-12.2.1AS.5.i386.rpm
Available from Red Hat Network: tcpdump-3.6.2-12.2.1AS.5.i386.rpm

ia64:
Available from Red Hat Network: arpwatch-2.1a11-12.2.1AS.5.ia64.rpm
Available from Red Hat Network: libpcap-0.6.2-12.2.1AS.5.ia64.rpm
Available from Red Hat Network: tcpdump-3.6.2-12.2.1AS.5.ia64.rpm

Red Hat Linux Advanced Workstation 2.1:

SRPMS:
ftp://updates.redhat.com/2.1AW/en/os/SRPMS/tcpdump-3.6.2-12.2.1AS.5.src.rpm

ia64:
Available from Red Hat Network: arpwatch-2.1a11-12.2.1AS.5.ia64.rpm
Available from Red Hat Network: libpcap-0.6.2-12.2.1AS.5.ia64.rpm
Available from Red Hat Network: tcpdump-3.6.2-12.2.1AS.5.ia64.rpm

Red Hat Enterprise Linux ES version 2.1:

SRPMS:
ftp://updates.redhat.com/2.1ES/en/os/SRPMS/tcpdump-3.6.2-12.2.1AS.5.src.rpm

i386:
Available from Red Hat Network: arpwatch-2.1a11-12.2.1AS.5.i386.rpm
Available from Red Hat Network: libpcap-0.6.2-12.2.1AS.5.i386.rpm
Available from Red Hat Network: tcpdump-3.6.2-12.2.1AS.5.i386.rpm

Red Hat Enterprise Linux WS version 2.1:

SRPMS:
ftp://updates.redhat.com/2.1WS/en/os/SRPMS/tcpdump-3.6.2-12.2.1AS.5.src.rpm

i386:
Available from Red Hat Network: arpwatch-2.1a11-12.2.1AS.5.i386.rpm
Available from Red Hat Network: libpcap-0.6.2-12.2.1AS.5.i386.rpm
Available from Red Hat Network: tcpdump-3.6.2-12.2.1AS.5.i386.rpm

Red Hat Enterprise Linux AS version 3:

SRPMS:
ftp://updates.redhat.com/3AS/en/os/SRPMS/tcpdump-3.7.2-7.E3.1.src.rpm

i386:
Available from Red Hat Network: libpcap-0.7.2-7.E3.1.i386.rpm
Available from Red Hat Network: tcpdump-3.7.2-7.E3.1.i386.rpm

ia64:
Available from Red Hat Network: libpcap-0.7.2-7.E3.1.ia64.rpm
Available from Red Hat Network: tcpdump-3.7.2-7.E3.1.ia64.rpm

ppc:
Available from Red Hat Network: libpcap-0.7.2-7.E3.1.ppc.rpm
Available from Red Hat Network: tcpdump-3.7.2-7.E3.1.ppc.rpm

s390:
Available from Red Hat Network: libpcap-0.7.2-7.E3.1.s390.rpm
Available from Red Hat Network: tcpdump-3.7.2-7.E3.1.s390.rpm

s390x:
Available from Red Hat Network: libpcap-0.7.2-7.E3.1.s390x.rpm
Available from Red Hat Network: tcpdump-3.7.2-7.E3.1.s390x.rpm

x86_64:
Available from Red Hat Network: libpcap-0.7.2-7.E3.1.x86_64.rpm
Available from Red Hat Network: tcpdump-3.7.2-7.E3.1.x86_64.rpm

Red Hat Enterprise Linux ES version 3:

SRPMS:
ftp://updates.redhat.com/3ES/en/os/SRPMS/tcpdump-3.7.2-7.E3.1.src.rpm

i386:
Available from Red Hat Network: libpcap-0.7.2-7.E3.1.i386.rpm
Available from Red Hat Network: tcpdump-3.7.2-7.E3.1.i386.rpm

Red Hat Enterprise Linux WS version 3:

SRPMS:
ftp://updates.redhat.com/3WS/en/os/SRPMS/tcpdump-3.7.2-7.E3.1.src.rpm

i386:
Available from Red Hat Network: libpcap-0.7.2-7.E3.1.i386.rpm
Available from Red Hat Network: tcpdump-3.7.2-7.E3.1.i386.rpm

ia64:
Available from Red Hat Network: libpcap-0.7.2-7.E3.1.ia64.rpm
Available from Red Hat Network: tcpdump-3.7.2-7.E3.1.ia64.rpm

x86_64:
Available from Red Hat Network: libpcap-0.7.2-7.E3.1.x86_64.rpm
Available from Red Hat Network: tcpdump-3.7.2-7.E3.1.x86_64.rpm

The verification checksums are:

MD5 sum Package Name
f8514b2194a97486f13edd26e9bb2295 2.1AS/en/os/SRPMS/tcpdump-3.6.2-12.2.1AS.5.src.rpm
aa7c761f81b35f62204947ad35761691 2.1AS/en/os/i386/arpwatch-2.1a11-12.2.1AS.5.i386.rpm
9a45470790c7fbaf62e65caebfbcc4bf 2.1AS/en/os/i386/libpcap-0.6.2-12.2.1AS.5.i386.rpm
73e41413141a6e3de200cfda3a8f62a9 2.1AS/en/os/i386/tcpdump-3.6.2-12.2.1AS.5.i386.rpm
e5f0e5fe662547e8b56bdb170dd9c5f7 2.1AS/en/os/ia64/arpwatch-2.1a11-12.2.1AS.5.ia64.rpm
ed7c329320fb9c5322a3c29b964e5829 2.1AS/en/os/ia64/libpcap-0.6.2-12.2.1AS.5.ia64.rpm
7e42cfabcc19ef88e26c52015a2bb2af 2.1AS/en/os/ia64/tcpdump-3.6.2-12.2.1AS.5.ia64.rpm
f8514b2194a97486f13edd26e9bb2295 2.1AW/en/os/SRPMS/tcpdump-3.6.2-12.2.1AS.5.src.rpm
e5f0e5fe662547e8b56bdb170dd9c5f7 2.1AW/en/os/ia64/arpwatch-2.1a11-12.2.1AS.5.ia64.rpm
ed7c329320fb9c5322a3c29b964e5829 2.1AW/en/os/ia64/libpcap-0.6.2-12.2.1AS.5.ia64.rpm
7e42cfabcc19ef88e26c52015a2bb2af 2.1AW/en/os/ia64/tcpdump-3.6.2-12.2.1AS.5.ia64.rpm
f8514b2194a97486f13edd26e9bb2295 2.1ES/en/os/SRPMS/tcpdump-3.6.2-12.2.1AS.5.src.rpm
aa7c761f81b35f62204947ad35761691 2.1ES/en/os/i386/arpwatch-2.1a11-12.2.1AS.5.i386.rpm
9a45470790c7fbaf62e65caebfbcc4bf 2.1ES/en/os/i386/libpcap-0.6.2-12.2.1AS.5.i386.rpm
73e41413141a6e3de200cfda3a8f62a9 2.1ES/en/os/i386/tcpdump-3.6.2-12.2.1AS.5.i386.rpm
f8514b2194a97486f13edd26e9bb2295 2.1WS/en/os/SRPMS/tcpdump-3.6.2-12.2.1AS.5.src.rpm
aa7c761f81b35f62204947ad35761691 2.1WS/en/os/i386/arpwatch-2.1a11-12.2.1AS.5.i386.rpm
9a45470790c7fbaf62e65caebfbcc4bf 2.1WS/en/os/i386/libpcap-0.6.2-12.2.1AS.5.i386.rpm
73e41413141a6e3de200cfda3a8f62a9 2.1WS/en/os/i386/tcpdump-3.6.2-12.2.1AS.5.i386.rpm
b696a326fd27432b35b87827573c4a17 3AS/en/os/SRPMS/tcpdump-3.7.2-7.E3.1.src.rpm
81ce9b57c74f0eb00a591e663df9aca0 3AS/en/os/i386/libpcap-0.7.2-7.E3.1.i386.rpm
0c243bf9453c7264272ad4b6797bef11 3AS/en/os/i386/tcpdump-3.7.2-7.E3.1.i386.rpm
83159081deedc38e0d785f65f2a61fa0 3AS/en/os/ia64/libpcap-0.7.2-7.E3.1.ia64.rpm
9a60b7805f6ecd5b4630e06a4584c11b 3AS/en/os/ia64/tcpdump-3.7.2-7.E3.1.ia64.rpm
bbee3cf34ddd8a145e60942b42d6324b 3AS/en/os/ppc/libpcap-0.7.2-7.E3.1.ppc.rpm
eed442f932ebd98e761276f4950c643f 3AS/en/os/ppc/tcpdump-3.7.2-7.E3.1.ppc.rpm
f8e6068a567b38c42354592048aef71f 3AS/en/os/s390/libpcap-0.7.2-7.E3.1.s390.rpm
1550185e63a3766786b5e4fe30831219 3AS/en/os/s390/tcpdump-3.7.2-7.E3.1.s390.rpm
717bb4e3f7632355ec3c5399f5e9d184 3AS/en/os/s390x/libpcap-0.7.2-7.E3.1.s390x.rpm
d22b432b917a0a38622f5795ca857294 3AS/en/os/s390x/tcpdump-3.7.2-7.E3.1.s390x.rpm
9160365fa5615acad24cf56cee8e6bf1 3AS/en/os/x86_64/libpcap-0.7.2-7.E3.1.x86_64.rpm
c679bdaf49dd59e8406f433ae804d00a 3AS/en/os/x86_64/tcpdump-3.7.2-7.E3.1.x86_64.rpm
b696a326fd27432b35b87827573c4a17 3ES/en/os/SRPMS/tcpdump-3.7.2-7.E3.1.src.rpm
81ce9b57c74f0eb00a591e663df9aca0 3ES/en/os/i386/libpcap-0.7.2-7.E3.1.i386.rpm
0c243bf9453c7264272ad4b6797bef11 3ES/en/os/i386/tcpdump-3.7.2-7.E3.1.i386.rpm
b696a326fd27432b35b87827573c4a17 3WS/en/os/SRPMS/tcpdump-3.7.2-7.E3.1.src.rpm
81ce9b57c74f0eb00a591e663df9aca0 3WS/en/os/i386/libpcap-0.7.2-7.E3.1.i386.rpm
0c243bf9453c7264272ad4b6797bef11 3WS/en/os/i386/tcpdump-3.7.2-7.E3.1.i386.rpm
83159081deedc38e0d785f65f2a61fa0 3WS/en/os/ia64/libpcap-0.7.2-7.E3.1.ia64.rpm
9a60b7805f6ecd5b4630e06a4584c11b 3WS/en/os/ia64/tcpdump-3.7.2-7.E3.1.ia64.rpm
9160365fa5615acad24cf56cee8e6bf1 3WS/en/os/x86_64/libpcap-0.7.2-7.E3.1.x86_64.rpm
c679bdaf49dd59e8406f433ae804d00a 3WS/en/os/x86_64/tcpdump-3.7.2-7.E3.1.x86_64.rpm

Vendor URL:  cvs.tcpdump.org/cgi-bin/cvsweb/tcpdump/print-isakmp.c (Links to External Site)
Cause:   Boundary error, Input validation error, State error
Underlying OS:  Linux (Red Hat Enterprise)
Underlying OS Comments:  2.1, 3

Message History:   This archive entry is a follow-up to the message listed below.
Jan 14 2004 Tcpdump Can Be Crashed By a Remote User Sending a Malicious ISAKMP Packet



 Source Message Contents

Subject:  [RHSA-2004:008-01] Updated tcpdump packages fix various vulnerabilities


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- ---------------------------------------------------------------------
                   Red Hat Security Advisory

Synopsis:          Updated tcpdump packages fix various vulnerabilities
Advisory ID:       RHSA-2004:008-01
Issue date:        2004-01-07
Updated on:        2004-01-15
Product:           Red Hat Enterprise Linux
Keywords:          tcpdump arpwatch buffer overflow
Cross references:  
Obsoletes:         RHSA-2003:151
CVE Names:         CAN-2003-0989 CAN-2004-0055 CAN-2004-0057
- ---------------------------------------------------------------------

1. Topic:

Updated tcpdump, libpcap, and arpwatch packages fix vulnerabilities in
ISAKMP and RADIUS parsing.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AS (Advanced Server) version 2.1 - i386, ia64
Red Hat Linux Advanced Workstation 2.1 - ia64
Red Hat Enterprise Linux ES version 2.1 - i386
Red Hat Enterprise Linux WS version 2.1 - i386
Red Hat Enterprise Linux AS version 3 - i386, ia64, ppc, s390, s390x, x86_64
Red Hat Enterprise Linux ES version 3 - i386
Red Hat Enterprise Linux WS version 3 - i386, ia64, x86_64

3. Problem description:

Tcpdump is a command-line tool for monitoring network traffic. 

George Bakos discovered flaws in the ISAKMP decoding routines of tcpdump
versions prior to 3.8.1.  The Common Vulnerabilities and Exposures project
(cve.mitre.org) has assigned the name CAN-2003-0989 to this issue.

Jonathan Heusser discovered an additional flaw in the ISAKMP decoding
routines for tcpdump 3.8.1 and earlier.  The Common Vulnerabilities and
Exposures project (cve.mitre.org) has assigned the name CAN-2004-0057 to
this issue.

Jonathan Heusser discovered a flaw in the print_attr_string function in the
RADIUS decoding routines for tcpdump 3.8.1 and earlier.  The Common
Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name
CAN-2004-0055 to this issue.

Remote attackers could potentially exploit these issues by sending
carefully-crafted packets to a victim.  If the victim uses tcpdump, these
pakets could result in a denial of service, or possibly execute arbitrary
code as the 'pcap' user.

Users of tcpdump are advised to upgrade to these erratum packages, which
contain backported security patches and are not vulnerable to these issues.

4. Solution:

Before applying this update, make sure all previously released errata
relevant to your system have been applied.

Please note that this update is available via Red Hat Network.  To use Red
Hat Network, launch the Red Hat Update Agent with the following command:

up2date

This will start an interactive process that will result in the appropriate
RPMs being upgraded on your system.

5. Bug IDs fixed (http://bugzilla.redhat.com/bugzilla for more info):

113008 - CAN-2003-0989 tcpdump parsing overflow
113366 - CAN-2004-0055 CAN-2004-0057 Two issues found in tpcdump

6. RPMs required:

Red Hat Enterprise Linux AS (Advanced Server) version 2.1:

SRPMS:
ftp://updates.redhat.com/2.1AS/en/os/SRPMS/tcpdump-3.6.2-12.2.1AS.5.src.rpm

i386:
Available from Red Hat Network: arpwatch-2.1a11-12.2.1AS.5.i386.rpm
Available from Red Hat Network: libpcap-0.6.2-12.2.1AS.5.i386.rpm
Available from Red Hat Network: tcpdump-3.6.2-12.2.1AS.5.i386.rpm

ia64:
Available from Red Hat Network: arpwatch-2.1a11-12.2.1AS.5.ia64.rpm
Available from Red Hat Network: libpcap-0.6.2-12.2.1AS.5.ia64.rpm
Available from Red Hat Network: tcpdump-3.6.2-12.2.1AS.5.ia64.rpm

Red Hat Linux Advanced Workstation 2.1:

SRPMS:
ftp://updates.redhat.com/2.1AW/en/os/SRPMS/tcpdump-3.6.2-12.2.1AS.5.src.rpm

ia64:
Available from Red Hat Network: arpwatch-2.1a11-12.2.1AS.5.ia64.rpm
Available from Red Hat Network: libpcap-0.6.2-12.2.1AS.5.ia64.rpm
Available from Red Hat Network: tcpdump-3.6.2-12.2.1AS.5.ia64.rpm

Red Hat Enterprise Linux ES version 2.1:

SRPMS:
ftp://updates.redhat.com/2.1ES/en/os/SRPMS/tcpdump-3.6.2-12.2.1AS.5.src.rpm

i386:
Available from Red Hat Network: arpwatch-2.1a11-12.2.1AS.5.i386.rpm
Available from Red Hat Network: libpcap-0.6.2-12.2.1AS.5.i386.rpm
Available from Red Hat Network: tcpdump-3.6.2-12.2.1AS.5.i386.rpm

Red Hat Enterprise Linux WS version 2.1:

SRPMS:
ftp://updates.redhat.com/2.1WS/en/os/SRPMS/tcpdump-3.6.2-12.2.1AS.5.src.rpm

i386:
Available from Red Hat Network: arpwatch-2.1a11-12.2.1AS.5.i386.rpm
Available from Red Hat Network: libpcap-0.6.2-12.2.1AS.5.i386.rpm
Available from Red Hat Network: tcpdump-3.6.2-12.2.1AS.5.i386.rpm

Red Hat Enterprise Linux AS version 3:

SRPMS:
ftp://updates.redhat.com/3AS/en/os/SRPMS/tcpdump-3.7.2-7.E3.1.src.rpm

i386:
Available from Red Hat Network: libpcap-0.7.2-7.E3.1.i386.rpm
Available from Red Hat Network: tcpdump-3.7.2-7.E3.1.i386.rpm

ia64:
Available from Red Hat Network: libpcap-0.7.2-7.E3.1.ia64.rpm
Available from Red Hat Network: tcpdump-3.7.2-7.E3.1.ia64.rpm

ppc:
Available from Red Hat Network: libpcap-0.7.2-7.E3.1.ppc.rpm
Available from Red Hat Network: tcpdump-3.7.2-7.E3.1.ppc.rpm

s390:
Available from Red Hat Network: libpcap-0.7.2-7.E3.1.s390.rpm
Available from Red Hat Network: tcpdump-3.7.2-7.E3.1.s390.rpm

s390x:
Available from Red Hat Network: libpcap-0.7.2-7.E3.1.s390x.rpm
Available from Red Hat Network: tcpdump-3.7.2-7.E3.1.s390x.rpm

x86_64:
Available from Red Hat Network: libpcap-0.7.2-7.E3.1.x86_64.rpm
Available from Red Hat Network: tcpdump-3.7.2-7.E3.1.x86_64.rpm

Red Hat Enterprise Linux ES version 3:

SRPMS:
ftp://updates.redhat.com/3ES/en/os/SRPMS/tcpdump-3.7.2-7.E3.1.src.rpm

i386:
Available from Red Hat Network: libpcap-0.7.2-7.E3.1.i386.rpm
Available from Red Hat Network: tcpdump-3.7.2-7.E3.1.i386.rpm

Red Hat Enterprise Linux WS version 3:

SRPMS:
ftp://updates.redhat.com/3WS/en/os/SRPMS/tcpdump-3.7.2-7.E3.1.src.rpm

i386:
Available from Red Hat Network: libpcap-0.7.2-7.E3.1.i386.rpm
Available from Red Hat Network: tcpdump-3.7.2-7.E3.1.i386.rpm

ia64:
Available from Red Hat Network: libpcap-0.7.2-7.E3.1.ia64.rpm
Available from Red Hat Network: tcpdump-3.7.2-7.E3.1.ia64.rpm

x86_64:
Available from Red Hat Network: libpcap-0.7.2-7.E3.1.x86_64.rpm
Available from Red Hat Network: tcpdump-3.7.2-7.E3.1.x86_64.rpm



7. Verification:

MD5 sum                          Package Name
- --------------------------------------------------------------------------

f8514b2194a97486f13edd26e9bb2295 2.1AS/en/os/SRPMS/tcpdump-3.6.2-12.2.1AS.5.src.rpm
aa7c761f81b35f62204947ad35761691 2.1AS/en/os/i386/arpwatch-2.1a11-12.2.1AS.5.i386.rpm
9a45470790c7fbaf62e65caebfbcc4bf 2.1AS/en/os/i386/libpcap-0.6.2-12.2.1AS.5.i386.rpm
73e41413141a6e3de200cfda3a8f62a9 2.1AS/en/os/i386/tcpdump-3.6.2-12.2.1AS.5.i386.rpm
e5f0e5fe662547e8b56bdb170dd9c5f7 2.1AS/en/os/ia64/arpwatch-2.1a11-12.2.1AS.5.ia64.rpm
ed7c329320fb9c5322a3c29b964e5829 2.1AS/en/os/ia64/libpcap-0.6.2-12.2.1AS.5.ia64.rpm
7e42cfabcc19ef88e26c52015a2bb2af 2.1AS/en/os/ia64/tcpdump-3.6.2-12.2.1AS.5.ia64.rpm
f8514b2194a97486f13edd26e9bb2295 2.1AW/en/os/SRPMS/tcpdump-3.6.2-12.2.1AS.5.src.rpm
e5f0e5fe662547e8b56bdb170dd9c5f7 2.1AW/en/os/ia64/arpwatch-2.1a11-12.2.1AS.5.ia64.rpm
ed7c329320fb9c5322a3c29b964e5829 2.1AW/en/os/ia64/libpcap-0.6.2-12.2.1AS.5.ia64.rpm
7e42cfabcc19ef88e26c52015a2bb2af 2.1AW/en/os/ia64/tcpdump-3.6.2-12.2.1AS.5.ia64.rpm
f8514b2194a97486f13edd26e9bb2295 2.1ES/en/os/SRPMS/tcpdump-3.6.2-12.2.1AS.5.src.rpm
aa7c761f81b35f62204947ad35761691 2.1ES/en/os/i386/arpwatch-2.1a11-12.2.1AS.5.i386.rpm
9a45470790c7fbaf62e65caebfbcc4bf 2.1ES/en/os/i386/libpcap-0.6.2-12.2.1AS.5.i386.rpm
73e41413141a6e3de200cfda3a8f62a9 2.1ES/en/os/i386/tcpdump-3.6.2-12.2.1AS.5.i386.rpm
f8514b2194a97486f13edd26e9bb2295 2.1WS/en/os/SRPMS/tcpdump-3.6.2-12.2.1AS.5.src.rpm
aa7c761f81b35f62204947ad35761691 2.1WS/en/os/i386/arpwatch-2.1a11-12.2.1AS.5.i386.rpm
9a45470790c7fbaf62e65caebfbcc4bf 2.1WS/en/os/i386/libpcap-0.6.2-12.2.1AS.5.i386.rpm
73e41413141a6e3de200cfda3a8f62a9 2.1WS/en/os/i386/tcpdump-3.6.2-12.2.1AS.5.i386.rpm
b696a326fd27432b35b87827573c4a17 3AS/en/os/SRPMS/tcpdump-3.7.2-7.E3.1.src.rpm
81ce9b57c74f0eb00a591e663df9aca0 3AS/en/os/i386/libpcap-0.7.2-7.E3.1.i386.rpm
0c243bf9453c7264272ad4b6797bef11 3AS/en/os/i386/tcpdump-3.7.2-7.E3.1.i386.rpm
83159081deedc38e0d785f65f2a61fa0 3AS/en/os/ia64/libpcap-0.7.2-7.E3.1.ia64.rpm
9a60b7805f6ecd5b4630e06a4584c11b 3AS/en/os/ia64/tcpdump-3.7.2-7.E3.1.ia64.rpm
bbee3cf34ddd8a145e60942b42d6324b 3AS/en/os/ppc/libpcap-0.7.2-7.E3.1.ppc.rpm
eed442f932ebd98e761276f4950c643f 3AS/en/os/ppc/tcpdump-3.7.2-7.E3.1.ppc.rpm
f8e6068a567b38c42354592048aef71f 3AS/en/os/s390/libpcap-0.7.2-7.E3.1.s390.rpm
1550185e63a3766786b5e4fe30831219 3AS/en/os/s390/tcpdump-3.7.2-7.E3.1.s390.rpm
717bb4e3f7632355ec3c5399f5e9d184 3AS/en/os/s390x/libpcap-0.7.2-7.E3.1.s390x.rpm
d22b432b917a0a38622f5795ca857294 3AS/en/os/s390x/tcpdump-3.7.2-7.E3.1.s390x.rpm
9160365fa5615acad24cf56cee8e6bf1 3AS/en/os/x86_64/libpcap-0.7.2-7.E3.1.x86_64.rpm
c679bdaf49dd59e8406f433ae804d00a 3AS/en/os/x86_64/tcpdump-3.7.2-7.E3.1.x86_64.rpm
b696a326fd27432b35b87827573c4a17 3ES/en/os/SRPMS/tcpdump-3.7.2-7.E3.1.src.rpm
81ce9b57c74f0eb00a591e663df9aca0 3ES/en/os/i386/libpcap-0.7.2-7.E3.1.i386.rpm
0c243bf9453c7264272ad4b6797bef11 3ES/en/os/i386/tcpdump-3.7.2-7.E3.1.i386.rpm
b696a326fd27432b35b87827573c4a17 3WS/en/os/SRPMS/tcpdump-3.7.2-7.E3.1.src.rpm
81ce9b57c74f0eb00a591e663df9aca0 3WS/en/os/i386/libpcap-0.7.2-7.E3.1.i386.rpm
0c243bf9453c7264272ad4b6797bef11 3WS/en/os/i386/tcpdump-3.7.2-7.E3.1.i386.rpm
83159081deedc38e0d785f65f2a61fa0 3WS/en/os/ia64/libpcap-0.7.2-7.E3.1.ia64.rpm
9a60b7805f6ecd5b4630e06a4584c11b 3WS/en/os/ia64/tcpdump-3.7.2-7.E3.1.ia64.rpm
9160365fa5615acad24cf56cee8e6bf1 3WS/en/os/x86_64/libpcap-0.7.2-7.E3.1.x86_64.rpm
c679bdaf49dd59e8406f433ae804d00a 3WS/en/os/x86_64/tcpdump-3.7.2-7.E3.1.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key is
available from https://www.redhat.com/security/keys.html

You can verify each package with the following command:
    
    rpm --checksig -v <filename>

If you only wish to verify that each package has not been corrupted or
tampered with, examine only the md5sum with the following command:
    
    md5sum <filename>


8. References:

http://marc.theaimsgroup.com/?l=tcpdump-workers&m=107325073018070
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0989
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0055
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0057

9. Contact:

The Red Hat security contact is <secalert@redhat.com>.  More contact
details at https://www.redhat.com/solutions/security/news/contact.html

Copyright 2003 Red Hat, Inc.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.7 (GNU/Linux)

iD8DBQFABmxrXlSAg2UNWIIRAmLxAJ0QuAvLUGWHdE5hw+SQ14bKt4NX6wCdE5e0
sxLd9hU1V4qkXzxj09bj/Eg=
=sV5W
-----END PGP SIGNATURE-----

-- 
Enterprise-watch-list mailing list
Enterprise-watch-list@redhat.com
https://www.redhat.com/mailman/listinfo/enterprise-watch-list

 
 


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2022, SecurityGlobal.net LLC