Slackware Advisory SSA:2005-195-10 Tcpdump DoS Network Vulnerability

Summary

The remote host is missing an update as announced via advisory SSA:2005-195-10.

Solution

https://secure1.securityspace.com/smysecure/catid.html?in=SSA:2005-195-10

Insight

New tcpdump packages are available for Slackware 8.1, 9.0, 9.1, 10.0, 10.1, and -current to fix a security issue. A specially crafted BGP packet can cause tcpdump to go into an infinite loop, creating a denial of service where network monitoring is disabled. More details about this issue may be found in the Common Vulnerabilities and Exposures (CVE) database:

Severity

Classification

CVE CVE-2005-1267
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:N/I:N/A:P

Related Vulnerabilities

Slackware Advisory SSA:2006-357-02 mozilla-thunderbird
Slackware Advisory SSA:2006-045-06 openssh
Slackware Advisory SSA:2003-168-01 2.4.21 kernels available
Slackware Advisory SSA:2006-178-03 arts
Slackware Advisory SSA:2004-108-02 cvs security update

Slackware Advisory SSA:2005-195-10 tcpdump DoS

Take action and discover your vulnerabilities