[ubuntu/bionic-security] tcpdump 4.9.3-0ubuntu0.18.04.2 (Accepted)
David Fernandez Gonzalez
david.fernandezgonzalez at canonical.com
Mon Apr 11 07:13:57 UTC 2022
tcpdump (4.9.3-0ubuntu0.18.04.2) bionic-security; urgency=medium
* SECURITY UPDATE: buffer overflow in read_infile
- debian/patches/CVE-2018-16301.patch: Add check of
file size before allocating and reading content in
tcpdump.c and netdissect-stdinc.h.
- CVE-2018-16301
* SECURITY UPDATE: resource exhaustion with big packets
- debian/patches/CVE-2020-8037.patch: Add a limit to the
amount of space that can be allocated when reading the
packet.
- CVE-2020-8037
Date: 2022-04-08 07:51:09.713678+00:00
Changed-By: David Fernandez Gonzalez <david.fernandezgonzalez at canonical.com>
https://launchpad.net/ubuntu/+source/tcpdump/4.9.3-0ubuntu0.18.04.2
-------------- next part --------------
Sorry, changesfile not available.
More information about the Bionic-changes
mailing list