Lucene search

OracleLinuxELSA-2017-1871

HistoryAug 07, 2017 - 12:00 a.m.

tcpdump security, bug fix, and enhancement update

2017-08-0700:00:00

linux.oracle.com

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.378 Low

EPSS

Percentile

96.8%

JSON

[14:4.9.0-5]

Resolves: #1441597; use bigger capture buffer than in upstream

[14:4.9.0-4]

Drop downstream patch (drop root privileges)
Add libcap-ng as a new build dependency
Related: #1262283

[14:4.9.0-3]

Fix tests according to our patches and libpcap version

[14:4.9.0-2]

Use getnameinfo instead of gethostbyaddr

[14:4.9.0-1]

New upstream version 4.9.0. Resolves: #1422473
Add legacy -P switch with warning. Related to #1422473 and #1292056

[14:4.5.1-6]

Drop root before creating any dump file. Resolves: #1262283

[14:4.5.1-5]

Use -Q instead of -P to set capture direction. Resolves: #1292056

[14:4.5.1-4]

Fix segfault with --help option. Resolves: #1297812

OSVersionArchitecturePackageVersionFilename
oracle linux7srctcpdump< 4.9.0-5.el7tcpdump-4.9.0-5.el7.src.rpm
oracle linux7aarch64tcpdump< 4.9.0-5.el7tcpdump-4.9.0-5.el7.aarch64.rpm
oracle linux7srctcpdump< 4.9.0-5.el7tcpdump-4.9.0-5.el7.src.rpm
oracle linux7x86_64tcpdump< 4.9.0-5.el7tcpdump-4.9.0-5.el7.x86_64.rpm

OS	Version	Architecture	Package	Version	Filename
oracle linux	7	src	tcpdump	< 4.9.0-5.el7	tcpdump-4.9.0-5.el7.src.rpm
oracle linux	7	aarch64	tcpdump	< 4.9.0-5.el7	tcpdump-4.9.0-5.el7.aarch64.rpm
oracle linux	7	src	tcpdump	< 4.9.0-5.el7	tcpdump-4.9.0-5.el7.src.rpm
oracle linux	7	x86_64	tcpdump	< 4.9.0-5.el7	tcpdump-4.9.0-5.el7.x86_64.rpm