[Buildroot] [PATCH] package/tcpdump: security bump to version 4.9.3

Peter Korsgaard peter at korsgaard.com
Tue Oct 29 10:52:58 UTC 2019


>>>>> "Baruch" == Baruch Siach <baruch at tkos.co.il> writes:

 > CHANGES summary:
 >     Fix buffer overflow/overread vulnerabilities:
 >       CVE-2017-16808 (AoE)
 >       CVE-2018-14468 (FrameRelay)
 >       CVE-2018-14469 (IKEv1)
 >       CVE-2018-14470 (BABEL)
 >       CVE-2018-14466 (AFS/RX)
 >       CVE-2018-14461 (LDP)
 >       CVE-2018-14462 (ICMP)
 >       CVE-2018-14465 (RSVP)
 >       CVE-2018-14881 (BGP)
 >       CVE-2018-14464 (LMP)
 >       CVE-2018-14463 (VRRP)
 >       CVE-2018-14467 (BGP)
 >       CVE-2018-10103 (SMB - partially fixed, but SMB printing disabled)
 >       CVE-2018-10105 (SMB - too unreliably reproduced, SMB printing disabled)
 >       CVE-2018-14880 (OSPF6)
 >       CVE-2018-16451 (SMB)
 >       CVE-2018-14882 (RPL)
 >       CVE-2018-16227 (802.11)
 >       CVE-2018-16229 (DCCP)
 >       CVE-2018-16301 (was fixed in libpcap)
 >       CVE-2018-16230 (BGP)
 >       CVE-2018-16452 (SMB)
 >       CVE-2018-16300 (BGP)
 >       CVE-2018-16228 (HNCP)
 >       CVE-2019-15166 (LMP)
 >       CVE-2019-15167 (VRRP)
 >     Fix for cmdline argument/local issues:
 >       CVE-2018-14879 (tcpdump -V)

 > Signed-off-by: Baruch Siach <baruch at tkos.co.il>

Committed to 2019.02.x and 2019.08.x, thanks.

-- 
Bye, Peter Korsgaard



More information about the buildroot mailing list