lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list] 
Date: Tue, 17 Mar 2015 14:48:44 +0000
From: Salvatore Bonaccorso <carnil@...ian.org>
To: bugtraq@...urityfocus.com
Subject: [SECURITY] [DSA 3193-1] tcpdump security update

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian Security Advisory DSA-3193-1                   security@...ian.org
http://www.debian.org/security/                      Salvatore Bonaccorso
March 17, 2015                         http://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package        : tcpdump
CVE ID         : CVE-2015-0261 CVE-2015-2153 CVE-2015-2154 CVE-2015-2155

Several vulnerabilities have been discovered in tcpdump, a command-line
network traffic analyzer. These vulnerabilities might result in denial
of service (application crash) or, potentially, execution of arbitrary
code.

For the stable distribution (wheezy), these problems have been fixed in
version 4.3.0-1+deb7u2.

For the upcoming stable distribution (jessie), these problems have been
fixed in version 4.6.2-4.

For the unstable distribution (sid), these problems have been fixed in
version 4.6.2-4.

We recommend that you upgrade your tcpdump packages.

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce@...ts.debian.org
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
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=rkMi
-----END PGP SIGNATURE-----

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ