[ubuntu/focal-security] tcpdump 4.9.3-4ubuntu0.1 (Accepted)

David Fernandez Gonzalez david.fernandezgonzalez at canonical.com
Mon Apr 11 07:13:56 UTC 2022

tcpdump (4.9.3-4ubuntu0.1) focal-security; urgency=medium

  * SECURITY UPDATE: buffer overflow in read_infile
    - debian/patches/CVE-2018-16301.patch: Add check of
      file size before allocating and reading content in
      tcpdump.c and netdissect-stdinc.h.
    - CVE-2018-16301
  * SECURITY UPDATE: resource exhaustion with big packets
    - debian/patches/CVE-2020-8037.patch: Add a limit to the
      amount of space that can be allocated when reading the
    - CVE-2020-8037

Date: 2022-04-08 07:51:12.893216+00:00
Changed-By: David Fernandez Gonzalez <david.fernandezgonzalez at canonical.com>
-------------- next part --------------
Sorry, changesfile not available.

More information about the Focal-changes mailing list