Package name
tcpdump
Date
2003-03-03
Advisory ID
MDKSA-2003:027
Affected versions
8.1 i586 , CS2.1 i586 , SNF7.2 i586 , 8.1 i586 , 9.0 i586 , 8.2 i586 , MNF8.2 i586 , 8.2 i586

Problem description

A vulnerability was discovered by Andrew Griffiths and iDEFENSE Labs in the tcpdump program. By sending a specially crafted network packet, an attacker is able to to cause tcpdump to enter an infinite loop. In addition, the tcpdump developers found a potential infinite loop when tcpdump parses malformed BGP packets. A buffer overflow was also discovered that can be exploited with certain malformed NFS packets.

Updated packages

8.1 i586

 b6de1971e7852f1f1255dcf237af3cde  ia64/8.1/RPMS/libpcap0-0.7.2-1.1mdk.ia64.rpm
de264fee1447af71141926878c93512e  ia64/8.1/RPMS/libpcap0-devel-0.7.2-1.1mdk.ia64.rpm
7dc035a9f8e8c14d80b27517ea52597f  ia64/8.1/RPMS/tcpdump-3.7.2-1.1mdk.ia64.rpm
2a5ba8809cc1b919e14eda315a6340b7  ia64/8.1/SRPMS/libpcap-0.7.2-1.1mdk.src.rpm
5129421a6ff6b84a4e4faae0119cfb23  ia64/8.1/SRPMS/tcpdump-3.7.2-1.1mdk.src.rpm

CS2.1 i586

 9df719dae2bffe49798156e87e875301  corporate/2.1/RPMS/libpcap0-0.7.2-1.1mdk.i586.rpm
fa7813f3afb1df4b3c00b73a198a53db  corporate/2.1/RPMS/libpcap0-devel-0.7.2-1.1mdk.i586.rpm
b32457602c61c0febcfc2e511373b517  corporate/2.1/RPMS/tcpdump-3.7.2-1.1mdk.i586.rpm
2a5ba8809cc1b919e14eda315a6340b7  corporate/2.1/SRPMS/libpcap-0.7.2-1.1mdk.src.rpm
5129421a6ff6b84a4e4faae0119cfb23  corporate/2.1/SRPMS/tcpdump-3.7.2-1.1mdk.src.rpm

SNF7.2 i586

 ea11a1e2673e0f2da584f08c83ac86a7  snf7.2/RPMS/libpcap-0.7.2-0.1mdk.i586.rpm
972bdf436bdece0078fafcddcaee7c85  snf7.2/RPMS/libpcap-devel-0.7.2-0.1mdk.i586.rpm
c96c4ae08580e72334da63a306168c41  snf7.2/RPMS/tcpdump-3.7.2-0.1mdk.i586.rpm
971d86767061c5804ddb3cf7de5ab167  snf7.2/SRPMS/libpcap-0.7.2-0.1mdk.src.rpm
9fb87d3952bf381e5ad552d16baea15b  snf7.2/SRPMS/tcpdump-3.7.2-0.1mdk.src.rpm

8.1 i586

 785f18da90ecf009c38d8e9e01216756  8.1/RPMS/libpcap0-0.7.2-1.1mdk.i586.rpm
512599ad54b47f70f54d722e7618ac45  8.1/RPMS/libpcap0-devel-0.7.2-1.1mdk.i586.rpm
01ab2770370dd94c1946b476df624fb7  8.1/RPMS/tcpdump-3.7.2-1.1mdk.i586.rpm
2a5ba8809cc1b919e14eda315a6340b7  8.1/SRPMS/libpcap-0.7.2-1.1mdk.src.rpm
5129421a6ff6b84a4e4faae0119cfb23  8.1/SRPMS/tcpdump-3.7.2-1.1mdk.src.rpm

9.0 i586

 9df719dae2bffe49798156e87e875301  9.0/RPMS/libpcap0-0.7.2-1.1mdk.i586.rpm
fa7813f3afb1df4b3c00b73a198a53db  9.0/RPMS/libpcap0-devel-0.7.2-1.1mdk.i586.rpm
b32457602c61c0febcfc2e511373b517  9.0/RPMS/tcpdump-3.7.2-1.1mdk.i586.rpm
2a5ba8809cc1b919e14eda315a6340b7  9.0/SRPMS/libpcap-0.7.2-1.1mdk.src.rpm
5129421a6ff6b84a4e4faae0119cfb23  9.0/SRPMS/tcpdump-3.7.2-1.1mdk.src.rpm

8.2 i586

 a86ae9c1f7d281382daf0a748b0cc192  8.2/RPMS/libpcap0-0.7.2-1.1mdk.i586.rpm
24fe4d16b5e81d825fa6648a84997d84  8.2/RPMS/libpcap0-devel-0.7.2-1.1mdk.i586.rpm
84e2ee00e25cb8e54d6efd98e20bd036  8.2/RPMS/tcpdump-3.7.2-1.1mdk.i586.rpm
2a5ba8809cc1b919e14eda315a6340b7  8.2/SRPMS/libpcap-0.7.2-1.1mdk.src.rpm
5129421a6ff6b84a4e4faae0119cfb23  8.2/SRPMS/tcpdump-3.7.2-1.1mdk.src.rpm

MNF8.2 i586

 a86ae9c1f7d281382daf0a748b0cc192  mnf8.2/RPMS/libpcap0-0.7.2-1.1mdk.i586.rpm
24fe4d16b5e81d825fa6648a84997d84  mnf8.2/RPMS/libpcap0-devel-0.7.2-1.1mdk.i586.rpm
84e2ee00e25cb8e54d6efd98e20bd036  mnf8.2/RPMS/tcpdump-3.7.2-1.1mdk.i586.rpm
2a5ba8809cc1b919e14eda315a6340b7  mnf8.2/SRPMS/libpcap-0.7.2-1.1mdk.src.rpm
5129421a6ff6b84a4e4faae0119cfb23  mnf8.2/SRPMS/tcpdump-3.7.2-1.1mdk.src.rpm

8.2 i586

 843c2d96494d413e96dee63c6eb013c8  ppc/8.2/RPMS/libpcap0-0.7.2-1.1mdk.ppc.rpm
112ca43b4c261593d5667dc44c17c700  ppc/8.2/RPMS/libpcap0-devel-0.7.2-1.1mdk.ppc.rpm
635d8576811efaee84d2c3608752669d  ppc/8.2/RPMS/tcpdump-3.7.2-1.1mdk.ppc.rpm
2a5ba8809cc1b919e14eda315a6340b7  ppc/8.2/SRPMS/libpcap-0.7.2-1.1mdk.src.rpm
5129421a6ff6b84a4e4faae0119cfb23  ppc/8.2/SRPMS/tcpdump-3.7.2-1.1mdk.src.rpm

References