Security Advisory Updated tcpdump packages available for Red Hat Linux 6.2 and 7.x

Advisory: RHSA-2001:089-08
Type: Security Advisory
Severity: N/A
Issued on: 2001-06-28
Last updated on: 2002-02-12
Affected Products: Red Hat Linux 6.2
Red Hat Linux 7.0
Red Hat Linux 7.1
Red Hat Linux 7.2
OVAL: N/A
CVEs (cve.mitre.org): CVE-2001-1279

Details

Updated tcpdump, libpcap, and arpwatch packages are available for Red
Hat Linux 6.2 and 7.x. These updates close vulnerabilities
present in versions of tcpdump up to 3.5.1 and various other bugs.

 


Solution

Before applying this update, make sure all previously released errata
relevant to your system have been applied.

To update all RPMs for your particular architecture, run:

rpm -Fvh [filenames]

where [filenames] is a list of the RPMs you wish to upgrade. Only those
RPMs which are currently installed will be updated. Those RPMs which are
not installed but included in the list will not be updated. Note that you
can also use wildcards (*.rpm) if your current directory *only* contains the
desired RPMs.

Please note that this update is also available via Red Hat Network. Many
people find this an easier way to apply updates. To use Red Hat Network,
launch the Red Hat Update Agent with the following command:

up2date

This will start an interactive process that will result in the appropriate
RPMs being upgraded on your system.

Updated packages

Red Hat Linux 6.2
SRPMS:
tcpdump-3.6.2-10.6x.src.rpm
File outdated by:  RHSA-2002:094		     56393468b3c93882189220111407f3f7
 
Alpha:
arpwatch-2.1a11-10.6x.alpha.rpm
File outdated by:  RHSA-2002:094		     2a7bc8c33bc44112cd653deffa276ddb
libpcap-0.6.2-10.6x.alpha.rpm
File outdated by:  RHSA-2002:094		     8438626e79402194be1f7e102e7aed4f
tcpdump-3.6.2-10.6x.alpha.rpm
File outdated by:  RHSA-2002:094		     bc74cb7a9f90cf65e97a9b10cc279cc3
 
IA-32:
arpwatch-2.1a11-10.6x.i386.rpm
File outdated by:  RHSA-2002:094		     9b11a1b1a4a73a2478d4b8717c860bcc
libpcap-0.6.2-10.6x.i386.rpm
File outdated by:  RHSA-2002:094		     a75d8ac51bff83006d89955cef92b9d5
tcpdump-3.6.2-10.6x.i386.rpm
File outdated by:  RHSA-2002:094		     fdf5f72d4fa307aafd3f79eff3924485
 
Sparc:
arpwatch-2.1a11-10.6x.sparc.rpm
File outdated by:  RHSA-2002:094		     03eca258656b8c0397588ddb7f081915
libpcap-0.6.2-10.6x.sparc.rpm
File outdated by:  RHSA-2002:094		     6689626f08db5f9b437f408634057287
tcpdump-3.6.2-10.6x.sparc.rpm
File outdated by:  RHSA-2002:094		     598314a8f72083c53ee6cea87df767f4
 
Red Hat Linux 7.0
SRPMS:
tcpdump-3.6.2-10.7.src.rpm
File outdated by:  RHSA-2002:094		     f662da7a2d04059682e5e91369c27bdd
 
Alpha:
arpwatch-2.1a11-10.7.alpha.rpm
File outdated by:  RHSA-2002:094		     1584a32f5454af549fa3894a8d9af857
libpcap-0.6.2-10.7.alpha.rpm
File outdated by:  RHSA-2002:094		     c5922dbfc1c0e6a4fd39b4566563c01e
tcpdump-3.6.2-10.7.alpha.rpm
File outdated by:  RHSA-2002:094		     75a38254b6fd158af44f6864469158ba
 
IA-32:
arpwatch-2.1a11-10.7.i386.rpm
File outdated by:  RHSA-2002:094		     fb1f88cae5595afcd8da3f436045e8c4
libpcap-0.6.2-10.7.i386.rpm
File outdated by:  RHSA-2002:094		     a718a12b3e9432b682fd56929c381100
tcpdump-3.6.2-10.7.i386.rpm
File outdated by:  RHSA-2002:094		     8330e5e715cad14f482fae2eff48c18c
 
Red Hat Linux 7.1
SRPMS:
tcpdump-3.6.2-10.7.src.rpm
File outdated by:  RHSA-2002:094		     f662da7a2d04059682e5e91369c27bdd
 
Alpha:
arpwatch-2.1a11-10.7.alpha.rpm
File outdated by:  RHSA-2002:094		     1584a32f5454af549fa3894a8d9af857
libpcap-0.6.2-10.7.alpha.rpm
File outdated by:  RHSA-2002:094		     c5922dbfc1c0e6a4fd39b4566563c01e
tcpdump-3.6.2-10.7.alpha.rpm
File outdated by:  RHSA-2002:094		     75a38254b6fd158af44f6864469158ba
 
IA-32:
arpwatch-2.1a11-10.7.i386.rpm
File outdated by:  RHSA-2003:032		     fb1f88cae5595afcd8da3f436045e8c4
libpcap-0.6.2-10.7.i386.rpm
File outdated by:  RHSA-2003:032		     a718a12b3e9432b682fd56929c381100
tcpdump-3.6.2-10.7.i386.rpm
File outdated by:  RHSA-2003:174		     8330e5e715cad14f482fae2eff48c18c
 
IA-64:
arpwatch-2.1a11-10.7.ia64.rpm
File outdated by:  RHSA-2002:094		     115633171d83eb88b8e03b2289b18bb9
libpcap-0.6.2-10.7.ia64.rpm
File outdated by:  RHSA-2002:094		     97a81098ffefd18a1a0d4c5b47531f30
tcpdump-3.6.2-10.7.ia64.rpm
File outdated by:  RHSA-2002:094		     0876627b7435b5bc948e61b75e4d859c
 
Red Hat Linux 7.2
SRPMS:
tcpdump-3.6.2-10.7x.src.rpm
File outdated by:  RHSA-2003:174		     8cc590d38b104a31da86c482702f8c52
 
IA-32:
arpwatch-2.1a11-10.7x.i386.rpm
File outdated by:  RHSA-2003:032		     064982643eaa2f6a19a318e0c50f2b84
libpcap-0.6.2-10.7x.i386.rpm
File outdated by:  RHSA-2003:032		     a00187999381db2a22dadc1a1f1ebca9
tcpdump-3.6.2-10.7x.i386.rpm
File outdated by:  RHSA-2003:174		     b456a14d95d7fdf36f00ef0f41ebc1f4
 
IA-64:
arpwatch-2.1a11-10.7x.ia64.rpm
File outdated by:  RHSA-2003:032		     65d133820ef5bdb32baed29284c0101e
libpcap-0.6.2-10.7x.ia64.rpm
File outdated by:  RHSA-2003:032		     0ac7da164d6b78e8fa62e6a43eb8cd80
tcpdump-3.6.2-10.7x.ia64.rpm
File outdated by:  RHSA-2003:174		     a8ae32328eb4230b105e6ad5e7c01c58
 

Bugs fixed (see bugzilla for more information)

45520 - Remote root exploit
47174 - libpcap-0.4-39.i386.rpm does not contain shared library libpcap.so.0
49294 - security problem in tcpdump-3.6.2 AFS printing
49635 - PATCH: tcpdump to drop root by default
52654 - Tcpdump get spurious packets before kernel filter kicks in
54593 - Doco change in specfile (minor)
57711 - arpwatch depends on csh for no good reason
58346 - tcpdump.spec creates pcap user with nonexistant shell


References

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2001-1279
http://www.ciac.org/ciac/bulletins/l-015.shtml

Keywords

buffer, overflow, tcpdump

These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/