TCPDUMP v3.8.1 and earlier versions contain multiple flaws in the packet display functions for the ISAKMP protocol. Upon receiving specially crafted ISAKMP packets, TCPDUMP will try to read beyond the end of the packet capture buffer and crash. This is a low-risk vulnerability, therefore this will get fixed in our next tcpdump updates. tcpdump 3.8.2/.3 came out on Mar30 to fix these issues CAN-2004-0183/84 Affects: 3AS 3WS 3ES CAN-2004-0183/84 Affects: 2.1AS 2.1AW 2.1ES 2.1WS
Mark, could you be so kind to propagate these reports to Fedora Core as well? It seems a bit redundant somebody else has to pick up on this when you are obviously already aware of the issue. Filed the issue for Fedora Core 1 under bug 120383.
An errata has been issued which should help the problem described in this bug report. This report is therefore being closed with a resolution of ERRATA. For more information on the solution and/or where to find the updated files, please follow the link below. You may reopen this bug report if the solution does not work for you. http://rhn.redhat.com/errata/RHSA-2004-219.html