This bug was fixed in the package tcpdump - 4.6.2-1ubuntu1.2
---------------
tcpdump (4.6.2-1ubuntu1.2) utopic-security; urgency=medium
* SECURITY UPDATE: denial of service and possible code execution via
multiple issues (LP: #1444363)
- debian/patches/60_cve-2015-0261.diff: check lengths in
print-mobility.c.
- debian/patches/60_cve-2015-2153.diff: check length in
print-rpki-rtr.c.
- debian/patches/60_cve-2015-2153-fix-regression.diff: more length
checks in print-rpki-rtr.c.
- debian/patches/60_cve-2015-2154.diff: check lengths in
print-isoclns.c.
- debian/patches/60_cve-2015-2155.diff: make sure ops->print is valid
in print-forces.c.
- CVE-2015-0261
- CVE-2015-2153
- CVE-2015-2154
- CVE-2015-2155
-- Marc Deslauriers <[email protected]> Fri, 24 Apr 2015 12:51:00
-0400
** Changed in: tcpdump (Ubuntu Utopic)
Status: Confirmed => Fix Released
** Changed in: tcpdump (Ubuntu Trusty)
Status: Confirmed => Fix Released
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1444363
Title:
tcpdump missing some CVEs
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/tcpdump/+bug/1444363/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
