Bug 37041 – tcpdump: Multiple issues (ES 3.2)

Bug 37041 - tcpdump: Multiple issues (ES 3.2)


Summary:	tcpdump: Multiple issues (ES 3.2)

Status:	CLOSED WONTFIX

Product:	UCS
Classification:	Unclassified
Component:	Security updates
Version:	UCS 3.2
Hardware:	Other Linux

Importance:	P3 normal (vote)
Target Milestone:	UCS 3.2-ES
Assigned To:	UCS maintainers
QA Contact:

URL:
Keywords:

Depends on:
Blocks:
	Show dependency tree / graph

Reported:	2014-11-26 12:27 CET by Moritz Muehlenhoff
Modified:	2019-04-11 19:25 CEST (History)
CC List:	2 users (show)

See Also:
What kind of report is it?:	Security Issue
What type of bug is this?:	---
Who will be affected by this bug?:	---
How will those affected feel about the bug?:	---
User Pain:
Enterprise Customer affected?:
School Customer affected?:
ISV affected?:
Waiting Support:
Flags outvoted (downgraded) after PO Review:
Ticket number:
Bug group (optional):
Max CVSS v3 score:

Flags:	requate: Patch_Available+

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Moritz Muehlenhoff

2014-11-26 12:27:44 CET

Denial of service when running the dissectors for AODV and OLSR in verbose mode (CVE-2014-8769, CVE-2014-8767)

Comment 1 Moritz Muehlenhoff

2014-12-01 08:19:03 CET

Buffer overflow in the PPP dissector (CVE-2014-9140)

Comment 2 Moritz Muehlenhoff

2015-03-13 14:09:21 CET

Security issues in multiple modules:

Ipv6 mobility (CVE-2015-0261)
TCP (CVE-2015-2153)
Ethernet (CVE-2015-2154)
forces (CVE-2015-2155)

Comment 3 Arvid Requate

2015-04-30 19:22:52 CEST

Fix available in Debian 4.1.1-1+deb6u2

Comment 4 Stefan Gohmann

2017-06-16 20:40:17 CEST

This issue has been filed against UCS 3. UCS 3 is out of the normal maintenance and many UCS components have vastly changed in UCS 4.

If this issue is still valid, please change the version to a newer UCS version otherwise this issue will be automatically closed in the next weeks.