Red Hat Bugzilla – Bug 123030
CAN-2004-0183/0184 tcpdump ISAKMP crash
Last modified: 2007-11-30 17:06:54 EST
TCPDUMP v3.8.1 and earlier versions contain multiple flaws in the
packet display functions for the ISAKMP protocol. Upon receiving
specially crafted ISAKMP packets, TCPDUMP will try to read beyond
the end of the packet capture buffer and crash.
This is a low-risk vulnerability, therefore this will get fixed in our
next tcpdump updates.
tcpdump 3.8.2/.3 came out on Mar30 to fix these issues
CAN-2004-0183/84 Affects: 3AS 3WS 3ES
CAN-2004-0183/84 Affects: 2.1AS 2.1AW 2.1ES 2.1WS
original bug #120022
An errata has been issued which should help the problem
described in this bug report. This report is therefore being
closed with a resolution of ERRATA. For more information
on the solution and/or where to find the updated files,
please follow the link below. You may reopen this bug report
if the solution does not work for you.