Debian Long Term Support / LTS Security Information / 2019 / Security Information -- DLA-1955-1 tcpdump

Debian Security Advisory

DLA-1955-1 tcpdump -- LTS security update

Date Reported:

11 Oct 2019

Affected Packages:

tcpdump

Vulnerable:

Yes

Security database references:

In the Debian bugtracking system: Bug 941698.
In Mitre's CVE dictionary: CVE-2018-10103, CVE-2018-10105, CVE-2018-14461, CVE-2018-14462, CVE-2018-14463, CVE-2018-14464, CVE-2018-14465, CVE-2018-14466, CVE-2018-14467, CVE-2018-14468, CVE-2018-14469, CVE-2018-14470, CVE-2018-14879, CVE-2018-14880, CVE-2018-14881, CVE-2018-14882, CVE-2018-16227, CVE-2018-16228, CVE-2018-16229, CVE-2018-16230, CVE-2018-16300, CVE-2018-16451, CVE-2018-16452, CVE-2019-15166.

More information:

Several vulnerabilities have been discovered in tcpdump, a command-line network traffic analyzer. These security vulnerabilities might result in denial of service or, potentially, execution of arbitrary code.

For Debian 8 Jessie, these problems have been fixed in version 4.9.3-1~deb8u1.

We recommend that you upgrade your tcpdump packages.

Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS