Full Disclosure mailing list archives
Security Update: [CSSA-2002-050.0] Linux: tcpdump denial-of-service in print-bgp.c
From: security () caldera com
Date: Tue, 19 Nov 2002 15:55:31 -0800
To: bugtraq () securityfocus com announce () lists caldera com security-alerts () linuxsecurity com full-disclosure ()
lists netsys com
______________________________________________________________________________
SCO Security Advisory
Subject: Linux: tcpdump denial-of-service in print-bgp.c
Advisory number: CSSA-2002-050.0
Issue date: 2002 November 19
Cross reference:
______________________________________________________________________________
1. Problem Description
There is a miscalculation in the use of the sizeof operator in
tcpdump, allowing, at the least, a denial-of-service attack.
2. Vulnerable Supported Versions
System Package
----------------------------------------------------------------------
OpenLinux 3.1.1 Server prior to tcpdump-3.6.2-4.i386.rpm
OpenLinux 3.1.1 Workstation prior to tcpdump-3.6.2-4.i386.rpm
OpenLinux 3.1 Server prior to tcpdump-3.6.2-4.i386.rpm
OpenLinux 3.1 Workstation prior to tcpdump-3.6.2-4.i386.rpm
3. Solution
The proper solution is to install the latest packages. Many
customers find it easier to use the Caldera System Updater, called
cupdate (or kcupdate under the KDE environment), to update these
packages rather than downloading and installing them by hand.
4. OpenLinux 3.1.1 Server
4.1 Package Location
ftp://ftp.sco.com/pub/updates/OpenLinux/3.1.1/Server/CSSA-2002-050.0/RPMS
4.2 Packages
88099679d803eb7f1583f99ccaa68fed tcpdump-3.6.2-4.i386.rpm
4.3 Installation
rpm -Fvh tcpdump-3.6.2-4.i386.rpm
4.4 Source Package Location
ftp://ftp.sco.com/pub/updates/OpenLinux/3.1.1/Server/CSSA-2002-050.0/SRPMS
4.5 Source Packages
098cc3870c3f665a0d8ca1ab33bd3aca tcpdump-3.6.2-4.src.rpm
5. OpenLinux 3.1.1 Workstation
5.1 Package Location
ftp://ftp.sco.com/pub/updates/OpenLinux/3.1.1/Workstation/CSSA-2002-050.0/RPMS
5.2 Packages
45db66a34637547e551b5c6617a96146 tcpdump-3.6.2-4.i386.rpm
5.3 Installation
rpm -Fvh tcpdump-3.6.2-4.i386.rpm
5.4 Source Package Location
ftp://ftp.sco.com/pub/updates/OpenLinux/3.1.1/Workstation/CSSA-2002-050.0/SRPMS
5.5 Source Packages
debcc7c371ef1857da6cf5beb2c9fb99 tcpdump-3.6.2-4.src.rpm
6. OpenLinux 3.1 Server
6.1 Package Location
ftp://ftp.sco.com/pub/updates/OpenLinux/3.1/Server/CSSA-2002-050.0/RPMS
6.2 Packages
890d010599a09f88ab2264e3c737e8b8 tcpdump-3.6.2-4.i386.rpm
6.3 Installation
rpm -Fvh tcpdump-3.6.2-4.i386.rpm
6.4 Source Package Location
ftp://ftp.sco.com/pub/updates/OpenLinux/3.1/Server/CSSA-2002-050.0/SRPMS
6.5 Source Packages
57282f9d95d4ac217472b37e1e4424ca tcpdump-3.6.2-4.src.rpm
7. OpenLinux 3.1 Workstation
7.1 Package Location
ftp://ftp.sco.com/pub/updates/OpenLinux/3.1/Workstation/CSSA-2002-050.0/RPMS
7.2 Packages
2e80f4e77cee7899bfbfc7c0552da424 tcpdump-3.6.2-4.i386.rpm
7.3 Installation
rpm -Fvh tcpdump-3.6.2-4.i386.rpm
7.4 Source Package Location
ftp://ftp.sco.com/pub/updates/OpenLinux/3.1/Workstation/CSSA-2002-050.0/SRPMS
7.5 Source Packages
d16939d580b36f127b12693548f17655 tcpdump-3.6.2-4.src.rpm
8. References
Specific references for this advisory:
none
SCO security resources:
http://www.sco.com/support/security/index.html
This security fix closes SCO incidents sr869390, fz526125,
erg712131.
9. Disclaimer
SCO is not responsible for the misuse of any of the information
we provide on this website and/or through our security
advisories. Our advisories are a service to our customers intended
to promote secure installation and use of SCO products.
______________________________________________________________________________
Attachment:
_bin
Description:
Current thread:
- Security Update: [CSSA-2002-050.0] Linux: tcpdump denial-of-service in print-bgp.c security (Nov 19)
- Re: Security Update: [CSSA-2002-050.0] Linux: tcpdump denial-of-service in print-bgp.c Silvio Cesare (Nov 20)