Bug 152732 - More flaws in tcpdump handling ISAKMP protocol
Summary: More flaws in tcpdump handling ISAKMP protocol
Alias: None
Product: Fedora Legacy
Classification: Retired
Component: General   
(Show other bugs)
Version: unspecified
Hardware: All Linux
Target Milestone: ---
Assignee: Fedora Legacy Bugs
QA Contact:
Depends On:
TreeView+ depends on / blocked
Reported: 2004-06-06 18:57 UTC by Michal Jaegermann
Modified: 2008-05-01 15:38 UTC (History)
0 users

Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of:
Last Closed:
Type: ---
Regression: ---
Mount Type: ---
Documentation: ---
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---

Attachments (Terms of Use)

Description David Lawrence 2005-03-30 23:25:31 UTC
A security advisory RHSA-2004:219-07 says the following:

  Tcpdump v3.8.1 and earlier versions contained multiple flaws in the
  packet display functions for the ISAKMP protocol. Upon receiving
  specially crafted ISAKMP packets, TCPDUMP would try to read beyond
  the end of the packet capture buffer and subsequently crash.

These are fresh vulnerabilities as described in CAN-2004-0183 and CAN-2004-0184.
A patch from that advisory applies unchanged to the previous "legacy" release
of tcpdump.

Does not sound like a killer bug but a fix is not that involved.

------- Additional Comments From michal@harddata.com 2004-06-06 15:04:25 ----

Created an attachment (id=718)
Fix for CAN-2004-0183 and CAN-2004-0184

This patch was taken from tcpdump-3.6.2-12.2.1AS.6.src.rpm.
A quick check of tcpdump-3.7.2-8.fc1.2.src.rpm strongly suggests that
this patch will be valid also for a version used in RH9.

------- Additional Comments From michal@harddata.com 2004-06-06 15:06:24 ----

Created an attachment (id=719)
changes to spec file

This patch applies to spec from release of tcpdump

------- Additional Comments From marcdeslauriers@videotron.ca 2004-06-08 02:09:29 ----

The packages I made in bug 1468 already have this patch applied.

*** This bug has been marked as a duplicate of 1468 ***

------- Bug moved to this database by dkl@redhat.com 2005-03-30 18:25 -------

This bug previously known as bug 1728 at https://bugzilla.fedora.us/
Originally filed under the Fedora Legacy product and General component.

Fix for CAN-2004-0183 and CAN-2004-0184
changes to spec file

Unknown priority P2. Setting to default priority "normal".
Unknown platform PC. Setting to default platform "All".
Setting qa contact to the default for this product.
   This bug either had no qa contact or an invalid one.

Note You need to log in before you can comment on or make changes to this bug.