(RHSA-2020:1604) Low: tcpdump security update

2020-04-2808:55:52

access.redhat.com

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

EPSS

0.002

Percentile

51.3%

JSON

The tcpdump packages contain the tcpdump utility for monitoring network traffic. The tcpdump utility can capture and display the packet headers on a particular network interface or on all interfaces.

Security Fix(es):

tcpdump: Stack-based buffer over-read in print-hncp.c:print_prefix() via crafted pcap (CVE-2018-19519)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the Red Hat Enterprise Linux 8.2 Release Notes linked from the References section.

OSVersionArchitecturePackageVersionFilename
RedHat8s390xtcpdump< 4.9.2-6.el8tcpdump-4.9.2-6.el8.s390x.rpm
RedHat8aarch64tcpdump-debuginfo< 4.9.2-6.el8tcpdump-debuginfo-4.9.2-6.el8.aarch64.rpm
RedHat8ppc64letcpdump< 4.9.2-6.el8tcpdump-4.9.2-6.el8.ppc64le.rpm
RedHat8s390xtcpdump-debuginfo< 4.9.2-6.el8tcpdump-debuginfo-4.9.2-6.el8.s390x.rpm
RedHat8x86_64tcpdump< 4.9.2-6.el8tcpdump-4.9.2-6.el8.x86_64.rpm
RedHat8ppc64letcpdump-debuginfo< 4.9.2-6.el8tcpdump-debuginfo-4.9.2-6.el8.ppc64le.rpm
RedHat8s390xtcpdump-debugsource< 4.9.2-6.el8tcpdump-debugsource-4.9.2-6.el8.s390x.rpm
RedHat8aarch64tcpdump-debugsource< 4.9.2-6.el8tcpdump-debugsource-4.9.2-6.el8.aarch64.rpm
RedHat8aarch64tcpdump< 4.9.2-6.el8tcpdump-4.9.2-6.el8.aarch64.rpm
RedHat8ppc64letcpdump-debugsource< 4.9.2-6.el8tcpdump-debugsource-4.9.2-6.el8.ppc64le.rpm

OS	Version	Architecture	Package	Version	Filename
RedHat	8	s390x	tcpdump	< 4.9.2-6.el8	tcpdump-4.9.2-6.el8.s390x.rpm
RedHat	8	aarch64	tcpdump-debuginfo	< 4.9.2-6.el8	tcpdump-debuginfo-4.9.2-6.el8.aarch64.rpm
RedHat	8	ppc64le	tcpdump	< 4.9.2-6.el8	tcpdump-4.9.2-6.el8.ppc64le.rpm
RedHat	8	s390x	tcpdump-debuginfo	< 4.9.2-6.el8	tcpdump-debuginfo-4.9.2-6.el8.s390x.rpm
RedHat	8	x86_64	tcpdump	< 4.9.2-6.el8	tcpdump-4.9.2-6.el8.x86_64.rpm
RedHat	8	ppc64le	tcpdump-debuginfo	< 4.9.2-6.el8	tcpdump-debuginfo-4.9.2-6.el8.ppc64le.rpm
RedHat	8	s390x	tcpdump-debugsource	< 4.9.2-6.el8	tcpdump-debugsource-4.9.2-6.el8.s390x.rpm
RedHat	8	aarch64	tcpdump-debugsource	< 4.9.2-6.el8	tcpdump-debugsource-4.9.2-6.el8.aarch64.rpm
RedHat	8	aarch64	tcpdump	< 4.9.2-6.el8	tcpdump-4.9.2-6.el8.aarch64.rpm
RedHat	8	ppc64le	tcpdump-debugsource	< 4.9.2-6.el8	tcpdump-debugsource-4.9.2-6.el8.ppc64le.rpm