[ubuntu/focal-security] tcpdump 4.9.3-4ubuntu0.1 (Accepted)
David Fernandez Gonzalez
david.fernandezgonzalez at canonical.com
Mon Apr 11 07:13:56 UTC 2022
tcpdump (4.9.3-4ubuntu0.1) focal-security; urgency=medium
* SECURITY UPDATE: buffer overflow in read_infile
- debian/patches/CVE-2018-16301.patch: Add check of
file size before allocating and reading content in
tcpdump.c and netdissect-stdinc.h.
- CVE-2018-16301
* SECURITY UPDATE: resource exhaustion with big packets
- debian/patches/CVE-2020-8037.patch: Add a limit to the
amount of space that can be allocated when reading the
packet.
- CVE-2020-8037
Date: 2022-04-08 07:51:12.893216+00:00
Changed-By: David Fernandez Gonzalez <david.fernandezgonzalez at canonical.com>
https://launchpad.net/ubuntu/+source/tcpdump/4.9.3-4ubuntu0.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the Focal-changes
mailing list