TCPDUMP v3.8.1 and earlier versions contain multiple flaws in the
packet display functions for the ISAKMP protocol. Upon receiving
specially crafted ISAKMP packets, TCPDUMP will try to read beyond
the end of the packet capture buffer and crash.
This is a low-risk vulnerability, therefore this will get fixed in our
next tcpdump updates.
tcpdump 3.8.2/.3 came out on Mar30 to fix these issues
CAN-2004-0183/84 Affects: 3AS 3WS 3ES
CAN-2004-0183/84 Affects: 2.1AS 2.1AW 2.1ES 2.1WS
Mark, could you be so kind to propagate these reports to Fedora Core
as well? It seems a bit redundant somebody else has to pick up on this
when you are obviously already aware of the issue.
Filed the issue for Fedora Core 1 under bug 120383.
An errata has been issued which should help the problem
described in this bug report. This report is therefore being
closed with a resolution of ERRATA. For more information
on the solution and/or where to find the updated files,
please follow the link below. You may reopen this bug report
if the solution does not work for you.