http://marc.theaimsgroup.com/?l=tcpdump-workers&m=107325073018070 Jonathan Heusser discovered two security bugs in tcpdump and reported to the tcpdump-workers mailinglist. The bugs have now been fixed in the CVS version. This could allow remote attackers to cause a denial of service or possibly execute arbitrary code as the 'pcap' user.
More details: Jonathan Heusser discovered an additional flaw in the ISAKMP decoding routines for tcpdump 3.8.1 and earlier. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2004-0057 to this issue. Jonathan Heusser discovered a flaw in the print_attr_string function in the RADIUS decoding routines for tcpdump 3.8.1 and earlier. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2004-0055 to this issue. CAN-2004-0055/7 Affects: 2.1AS 2.1WS 2.1AW 2.1ES CAN-2004-0055/7 Affects: 3AS 3ES 3WS
Fixed by RHSA-2004:008