-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 -------------------------------------------------------------------------- Turbolinux Security Advisory TLSA-2004-3 http://www.turbolinux.co.jp/security/ security-team@turbolinux.co.jp -------------------------------------------------------------------------- Original released date : 22 Jan 2004 Last revised : 05 Feb 2004 Package : tcpdump Summary : Multiple vulnerabilities in tcpdump More information : Tcpdump is a tool designed to prints out the headers of packets on a network interface. The buffer overflow vulnerabilities were discovered in the ISAKMP and RADIUS decoding routines of tcpdump. Impact : Remote attackers could potentially exploit these issues by sending carefully-crafted packets to a victim. Affected Products : - Turbolinux 10 Desktop - Turbolinux 8 Server - Turbolinux 8 Workstation - Turbolinux 7 Server - Turbolinux 7 Workstation - Turbolinux Server 6.5 - Turbolinux Advanced Server 6 - Turbolinux Server 6.1 - Turbolinux Workstation 6.0 Solution : Please use turbopkg(zabom) tool to apply the update. --------------------------------------------- # turbopkg or [Turbolinux 10 Desktop] # zabom -u tcpdump [other] # zabom update tcpdump --------------------------------------------- Source Packages Size : MD5 ftp://ftp.turbolinux.com/pub/TurboLinux/TurboLinux/ia32/Desktop/10/updates/SRPMS/tcpdump-3.8.1-3.src.rpm 530532 182d982b83ddc7319718952dd7fbac02 Binary Packages Size : MD5 ftp://ftp.turbolinux.com/pub/TurboLinux/TurboLinux/ia32/Desktop/10/updates/RPMS/tcpdump-3.8.1-3.i586.rpm 257819 31686b16f177a1e622a3a60c880b744b Source Packages Size : MD5 ftp://ftp.turbolinux.com/pub/TurboLinux/TurboLinux/ia32/Server/8/updates/SRPMS/tcpdump-3.8.1-3.src.rpm 530532 a3642e182fba618c5fce5380488c6b94 Binary Packages Size : MD5 ftp://ftp.turbolinux.com/pub/TurboLinux/TurboLinux/ia32/Server/8/updates/RPMS/tcpdump-3.8.1-3.i586.rpm 260528 bbabeec6c172e766d72fdd22d64daa61 Source Packages Size : MD5 ftp://ftp.turbolinux.com/pub/TurboLinux/TurboLinux/ia32/Workstation/8/updates/SRPMS/tcpdump-3.8.1-3.src.rpm 530532 343da27cecf90b7d166d9ed4fb5f7aba Binary Packages Size : MD5 ftp://ftp.turbolinux.com/pub/TurboLinux/TurboLinux/ia32/Workstation/8/updates/RPMS/tcpdump-3.8.1-3.i586.rpm 260479 086876a47a21ec08c31fc06de475dd40 Source Packages Size : MD5 ftp://ftp.turbolinux.com/pub/TurboLinux/TurboLinux/ia32/Server/7/updates/SRPMS/tcpdump-3.8.1-3.src.rpm 530532 1204150f847c054477d1deff3e8e2317 Binary Packages Size : MD5 ftp://ftp.turbolinux.com/pub/TurboLinux/TurboLinux/ia32/Server/7/updates/RPMS/tcpdump-3.8.1-3.i586.rpm 255038 e23b29597d31de19c972ac55beb150e1 Source Packages Size : MD5 ftp://ftp.turbolinux.com/pub/TurboLinux/TurboLinux/ia32/Workstation/7/updates/SRPMS/tcpdump-3.8.1-3.src.rpm 530532 507cf8bad68f8fd7837d080d6fa2c60b Binary Packages Size : MD5 ftp://ftp.turbolinux.com/pub/TurboLinux/TurboLinux/ia32/Workstation/7/updates/RPMS/tcpdump-3.8.1-3.i586.rpm 255084 ac512219e77cc5fc63909819ebb3339e Source Packages Size : MD5 ftp://ftp.turbolinux.com/pub/TurboLinux/TurboLinux/ia32/Server/6.5/updates/SRPMS/tcpdump-3.8.1-3.src.rpm 530532 8645f46cb313f33ed954dc1143c48924 Binary Packages Size : MD5 ftp://ftp.turbolinux.com/pub/TurboLinux/TurboLinux/ia32/Server/6.5/updates/RPMS/tcpdump-3.8.1-3.i386.rpm 249078 93799305c94f2de582b709e2bf3afd08 Source Packages Size : MD5 ftp://ftp.turbolinux.com/pub/TurboLinux/TurboLinux/ia32/AdvancedServer/6/ja/updates/SRPMS/tcpdump-3.8.1-3.src.rpm 530532 0e73a9483bd640cb196780cffd08d75f Binary Packages Size : MD5 ftp://ftp.turbolinux.com/pub/TurboLinux/TurboLinux/ia32/AdvancedServer/6/ja/updates/RPMS/tcpdump-3.8.1-3.i386.rpm 249092 93884a95c3dfb034a239d37350e0b4c1 Source Packages Size : MD5 ftp://ftp.turbolinux.com/pub/TurboLinux/TurboLinux/ia32/Server/6.1/ja/updates/SRPMS/tcpdump-3.8.1-3.src.rpm 530532 04f7775d75e9c85fe8d31ebe4634f466 Binary Packages Size : MD5 ftp://ftp.turbolinux.com/pub/TurboLinux/TurboLinux/ia32/Server/6.1/ja/updates/RPMS/tcpdump-3.8.1-3.i386.rpm 249095 a44659a6d8e6fa5364dda826047a947c Source Packages Size : MD5 ftp://ftp.turbolinux.com/pub/TurboLinux/TurboLinux/ia32/Workstation/6.0/ja/updates/SRPMS/tcpdump-3.8.1-3.src.rpm 530532 553e7d95f6690bfb98d7a8a928947b62 Binary Packages Size : MD5 ftp://ftp.turbolinux.com/pub/TurboLinux/TurboLinux/ia32/Workstation/6.0/ja/updates/RPMS/tcpdump-3.8.1-3.i386.rpm 249083 1f0655d50c802b56e27caa44d8821fd7 References : CVE [CAN-2003-0989] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0989 [CAN-2004-0055] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0055 [CAN-2004-0057] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0057 Turbolinux Security Advisory [TLSA-2003-14] http://www.turbolinux.com/security/TLSA-2003-14.txt -------------------------------------------------------------------------- Revision History 22 Jan 2004 Initial release 05 Feb 2004 tcpdump-3.8.1-1 -> tcpdump-3.8.1-3 -------------------------------------------------------------------------- Copyright(C) 2004 Turbolinux, Inc. All rights reserved. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.3 (GNU/Linux) iD8DBQFAIgWnK0LzjOqIJMwRAqyHAJ9dJVtnggU6q8RL/qHXgjQAXG3LbgCcDJDq l1NwS25QuIJM3vOrSIjnwFI= =xgOP -----END PGP SIGNATURE-----