Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
centosCentOS ProjectCESA-2005:417
HistoryMay 11, 2005 - 3:02 p.m.

arpwatch, libpcap, tcpdump security update

2005-05-1115:02:12
CentOS Project
lists.centos.org
45

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.828 High

EPSS

Percentile

98.4%

JSON

CentOS Errata and Security Advisory CESA-2005:417

Tcpdump is a command-line tool for monitoring network traffic.

Several denial of service bugs were found in the way tcpdump processes
certain network packets. It is possible for an attacker to inject a
carefully crafted packet onto the network, crashing a running tcpdump
session. The Common Vulnerabilities and Exposures project (cve.mitre.org)
has assigned the names CAN-2005-1278, CAN-2005-1279, and CAN-2005-1280 to
these issues.

The tcpdump utility can now write a file larger than 2 GB.

Users of tcpdump are advised to upgrade to these erratum packages, which
contain backported security patches and are not vulnerable to these issues.

Merged security bulletin from advisories:
https://lists.centos.org/pipermail/centos-announce/2005-May/073804.html
https://lists.centos.org/pipermail/centos-announce/2005-May/073810.html
https://lists.centos.org/pipermail/centos-announce/2005-May/073812.html
https://lists.centos.org/pipermail/centos-announce/2005-May/073813.html
https://lists.centos.org/pipermail/centos-announce/2005-May/073816.html

Affected packages:
arpwatch
libpcap
tcpdump

Upstream details at:
https://access.redhat.com/errata/RHSA-2005:417

Related

f5 2
nessus 10
centos 1
redhat 2
ubuntu 1
openvas 8
gentoo 1
securityvulns 1
freebsd_advisory 1
freebsd 1
cve 3
debiancve 3
ubuntucve 3
osv 1
debian 2
f5
f5
tcpdump vulnerabilities CAN-2005-1278, CAN-2005-1279, and CAN-2005-1280
2005-07-21 04:00:00
SOL4809 - tcpdump vulnerabilities - CAN-2005-1278, CAN-2005-1279, and CAN-2005-1280
2005-07-20 00:00:00
nessus
nessus
CentOS 3 / 4 : tcpdump (CESA-2005:417)
2006-07-05 00:00:00
Fedora Core 3 : tcpdump-3.8.2-8.FC3 (2005-351)
2005-09-12 00:00:00
CentOS 3 : tcpdump (CESA-2005:421)
2006-07-03 00:00:00
centos
centos
arpwatch, libpcap, tcpdump security update
2005-05-11 15:04:44
redhat
redhat
(RHSA-2005:421) tcpdump security update
2005-05-11 00:00:00
(RHSA-2005:417) tcpdump security update
2005-05-11 00:00:00
ubuntu
ubuntu
tcpdump vulnerabilities
2005-05-06 00:00:00
openvas
openvas
SLES9: Security update for tcpdump
2009-10-10 00:00:00
SLES9: Security update for tcpdump
2009-10-10 00:00:00
Gentoo Security Advisory GLSA 200505-06 (tcpdump)
2008-09-24 00:00:00
gentoo
gentoo
TCPDump: Decoding routines Denial of Service vulnerability
2005-05-09 00:00:00
securityvulns
securityvulns
Another tcpdump BGP infinite loop vulnerability (CAN-2005-1267)
2005-06-21 00:00:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-05:10.tcpdump
2005-06-09 00:00:00
freebsd
freebsd
tcpdump -- infinite loops in protocol decoding
2005-06-09 00:00:00
cve
cve
CVE-2005-1279
2005-05-02 04:00:00
CVE-2005-1278
2005-05-02 04:00:00
CVE-2005-1280
2005-05-02 04:00:00
debiancve
debiancve
CVE-2005-1279
2005-05-02 04:00:00
CVE-2005-1278
2005-05-02 04:00:00
CVE-2005-1280
2005-05-02 04:00:00
ubuntucve
ubuntucve
CVE-2005-1279
2005-05-02 00:00:00
CVE-2005-1278
2005-05-02 00:00:00
CVE-2005-1280
2005-05-02 00:00:00
osv
osv
tcpdump - denial of service
2005-10-09 00:00:00
debian
debian
[SECURITY] [DSA 850-1] New tcpdump packages fix denial of service
2005-10-09 04:57:58
[SECURITY] [DSA 850-1] New tcpdump packages fix denial of service
2005-10-09 04:57:58

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.828 High

EPSS

Percentile

98.4%

JSON
Related for CESA-2005:417
f52nessus10centos1redhat2ubuntu1openvas8gentoo1securityvulns1freebsd_advisory1freebsd1cve3debiancve3ubuntucve3osv1debian2