English | Deutsch | Español
 
Inicial ▼
Página inicial Acerca Nuestro Contáctenos Privacidad Programas de Asociados Testimonios En la Prensa Listas de Correos Abuso Developer APIs
Bookkeeping
Online ▼
Home Free Trial FAQ
Open/Create Company File Accept an Invite Order/Renew
 
Auditorias ▼
Inicial Dedicada Avanzada Estándar Periódica Sin Riesgo Escritorio Básica Sello FAQ Resumen de Precio/Funciones Ordenar Nuevas Pruebas Todas las Pruebas Confidencialidad Búsqueda de Vulnerabilidad Ejecutar Auditoría Programador IP Permissions Auditorías Personalizadas Cola Recordatorio Sellos Informes Estilos de Informes
DNS
Administrado ▼
Acerca de DNS Ordenar/Renovar Preguntas Frecuentes AUP Dynamic DNS Clients
Configurar Dominios Dynamic DNS Update Password
Monitoreo
de Redes ▼
Enterprise Avanzado Estándarr Prueba Preguntas Frecuentes Resumen de Precio/Funciones Ordenar Muestras
Configure/Status Alert Profiles
Research
Reports ▼
Home FAQ Glossary Archive
 Iniciar sesión/Registrarse 
 
 Búsqueda de    
Vulnerabilidad   		     Buscar 324607 Descripciones CVE y
145615 Descripciones de Pruebas,
accesos 10,000+ referencias cruzadas.
Pruebas   CVE   Todos  

ID de Prueba:1.3.6.1.4.1.25623.1.0.871861
Categoría:Red Hat Local Security Checks
Título:RedHat Update for tcpdump RHSA-2017:1871-01
Resumen:The remote host is missing an update for the 'tcpdump'; package(s) announced via the referenced advisory.
Descripción:Summary:
The remote host is missing an update for the 'tcpdump'
package(s) announced via the referenced advisory.

Vulnerability Insight:
The tcpdump packages contain the tcpdump
utility for monitoring network traffic. The tcpdump utility can capture and
display the packet headers on a particular network interface or on all
interfaces. The following packages have been upgraded to a later upstream
version: tcpdump (4.9.0). (BZ#1422473) Security Fix(es): * Multiple out of
bounds read and integer overflow vulnerabilities were found in tcpdump affecting
the decoding of various protocols. An attacker could create a crafted pcap file
or send specially crafted packets to the network segment where tcpdump is
running in live capture mode (without -w) which could cause it to display
incorrect data, crash or enter an infinite loop. (CVE-2015-0261, CVE-2015-2153,
CVE-2015-2154, CVE-2015-2155, CVE-2016-7922, CVE-2016-7923, CVE-2016-7924,
CVE-2016-7925, CVE-2016-7926, CVE-2016-7927, CVE-2016-7928, CVE-2016-7929,
CVE-2016-7930, CVE-2016-7931, CVE-2016-7932, CVE-2016-7933, CVE-2016-7934,
CVE-2016-7935, CVE-2016-7936, CVE-2016-7937, CVE-2016-7938, CVE-2016-7939,
CVE-2016-7940, CVE-2016-7973, CVE-2016-7974, CVE-2016-7975, CVE-2016-7983,
CVE-2016-7984, CVE-2016-7985, CVE-2016-7986, CVE-2016-7992, CVE-2016-7993,
CVE-2016-8574, CVE-2016-8575, CVE-2017-5202, CVE-2017-5203, CVE-2017-5204,
CVE-2017-5205, CVE-2017-5341, CVE-2017-5342, CVE-2017-5482, CVE-2017-5483,
CVE-2017-5484, CVE-2017-5485, CVE-2017-5486) Red Hat would like to thank the
Tcpdump project for reporting CVE-2016-7922, CVE-2016-7923, CVE-2016-7924,
CVE-2016-7925, CVE-2016-7926, CVE-2016-7927, CVE-2016-7928, CVE-2016-7929,
CVE-2016-7930, CVE-2016-7931, CVE-2016-7932, CVE-2016-7933, CVE-2016-7934,
CVE-2016-7935, CVE-2016-7936, CVE-2016-7937, CVE-2016-7938, CVE-2016-7939,
CVE-2016-7940, CVE-2016-7973, CVE-2016-7974, CVE-2016-7975, CVE-2016-7983,
CVE-2016-7984, CVE-2016-7985, CVE-2016-7986, CVE-2016-7992, CVE-2016-7993,
CVE-2016-8574, CVE-2016-8575, CVE-2017-5202, CVE-2017-5203, CVE-2017-5204,
CVE-2017-5205, CVE-2017-5341, CVE-2017-5342, CVE-2017-5482, CVE-2017-5483,
CVE-2017-5484, CVE-2017-5485, and CVE-2017-5486. Additional Changes: For
detailed information on changes in this release, see the Red Hat Enterprise
Linux 7.4 Release Notes linked from the References section.

Affected Software/OS:
tcpdump on Red Hat Enterprise Linux Server (v. 7)

Solution:
Please Install the Updated Packages.

CVSS Score:
7.5

CVSS Vector:
AV:N/AC:L/Au:N/C:P/I:P/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2015-0261
BugTraq ID: 73019
http://www.securityfocus.com/bid/73019
Bugtraq: 20150309 tcpdump 4.7.2 remote crashes (Google Search)
http://www.securityfocus.com/archive/1/534829/100/0/threaded
Debian Security Information: DSA-3193 (Google Search)
http://www.debian.org/security/2015/dsa-3193
http://lists.fedoraproject.org/pipermail/package-announce/2015-March/153999.html
http://lists.fedoraproject.org/pipermail/package-announce/2015-March/153834.html
https://security.gentoo.org/glsa/201510-04
http://www.mandriva.com/security/advisories?name=MDVSA-2015:125
http://www.mandriva.com/security/advisories?name=MDVSA-2015:182
http://packetstormsecurity.com/files/130730/tcpdump-Denial-Of-Service-Code-Execution.html
RedHat Security Advisories: RHSA-2017:1871
https://access.redhat.com/errata/RHSA-2017:1871
http://www.securitytracker.com/id/1031937
SuSE Security Announcement: openSUSE-SU-2015:0616 (Google Search)
http://lists.opensuse.org/opensuse-updates/2015-03/msg00084.html
http://www.ubuntu.com/usn/USN-2580-1
Common Vulnerability Exposure (CVE) ID: CVE-2015-2153
BugTraq ID: 73018
http://www.securityfocus.com/bid/73018
https://www.exploit-db.com/exploits/37663/
Common Vulnerability Exposure (CVE) ID: CVE-2015-2154
BugTraq ID: 73017
http://www.securityfocus.com/bid/73017
Common Vulnerability Exposure (CVE) ID: CVE-2015-2155
BugTraq ID: 73021
http://www.securityfocus.com/bid/73021
Common Vulnerability Exposure (CVE) ID: CVE-2016-7922
BugTraq ID: 95852
http://www.securityfocus.com/bid/95852
Debian Security Information: DSA-3775 (Google Search)
http://www.debian.org/security/2017/dsa-3775
https://security.gentoo.org/glsa/201702-30
http://www.securitytracker.com/id/1037755
Common Vulnerability Exposure (CVE) ID: CVE-2016-7923
Common Vulnerability Exposure (CVE) ID: CVE-2016-7924
Common Vulnerability Exposure (CVE) ID: CVE-2016-7925
Common Vulnerability Exposure (CVE) ID: CVE-2016-7926
Common Vulnerability Exposure (CVE) ID: CVE-2016-7931
Common Vulnerability Exposure (CVE) ID: CVE-2016-7936
Common Vulnerability Exposure (CVE) ID: CVE-2016-7973
Common Vulnerability Exposure (CVE) ID: CVE-2016-7927
Common Vulnerability Exposure (CVE) ID: CVE-2016-7928
Common Vulnerability Exposure (CVE) ID: CVE-2016-7929
Common Vulnerability Exposure (CVE) ID: CVE-2016-7930
Common Vulnerability Exposure (CVE) ID: CVE-2016-7932
Common Vulnerability Exposure (CVE) ID: CVE-2016-7933
Common Vulnerability Exposure (CVE) ID: CVE-2016-7934
Common Vulnerability Exposure (CVE) ID: CVE-2016-7935
Common Vulnerability Exposure (CVE) ID: CVE-2016-7937
Common Vulnerability Exposure (CVE) ID: CVE-2016-7938
Common Vulnerability Exposure (CVE) ID: CVE-2016-7939
Common Vulnerability Exposure (CVE) ID: CVE-2016-7940
Common Vulnerability Exposure (CVE) ID: CVE-2016-7974
Common Vulnerability Exposure (CVE) ID: CVE-2016-7975
Common Vulnerability Exposure (CVE) ID: CVE-2016-7983
Common Vulnerability Exposure (CVE) ID: CVE-2016-7984
Common Vulnerability Exposure (CVE) ID: CVE-2016-7985
Common Vulnerability Exposure (CVE) ID: CVE-2016-8575
Common Vulnerability Exposure (CVE) ID: CVE-2017-5341
Common Vulnerability Exposure (CVE) ID: CVE-2017-5485
Common Vulnerability Exposure (CVE) ID: CVE-2016-7986
Common Vulnerability Exposure (CVE) ID: CVE-2016-7992
Common Vulnerability Exposure (CVE) ID: CVE-2016-7993
Common Vulnerability Exposure (CVE) ID: CVE-2016-8574
Common Vulnerability Exposure (CVE) ID: CVE-2017-5202
Common Vulnerability Exposure (CVE) ID: CVE-2017-5203
Common Vulnerability Exposure (CVE) ID: CVE-2017-5204
Common Vulnerability Exposure (CVE) ID: CVE-2017-5205
Common Vulnerability Exposure (CVE) ID: CVE-2017-5342
Common Vulnerability Exposure (CVE) ID: CVE-2017-5482
Common Vulnerability Exposure (CVE) ID: CVE-2017-5483
Common Vulnerability Exposure (CVE) ID: CVE-2017-5484
Common Vulnerability Exposure (CVE) ID: CVE-2017-5486
CopyrightCopyright (C) 2017 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.

Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.



© 1998-2025 E-Soft Inc. Todos los derechos reservados.