Security update for tcpdump SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2015:0692-1 Final 1 1 2015-03-20T14:41:11Z current 2015-03-20T14:41:11Z 2015-03-20T14:41:11Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for tcpdump When running tcpdump, a remote unauthenticated user could have crashed the application or, potentially, execute arbitrary code by injecting crafted packages into the network. The following vulnerabilities in protocol printers have been fixed: * IPv6 mobility printer remote DoS (CVE-2015-0261, bnc#922220) * Ethernet printer remote DoS (CVE-2015-2154, bnc#922222) * PPP printer remote DoS (CVE-2014-9140, bnc#923142) Security Issues: * CVE-2015-0261 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0261> * CVE-2015-2154 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2154> * CVE-2014-9140 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9140> The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). sledsp3-tcpdump,slessp3-tcpdump Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2015/suse-su-20150692-1/ Link for SUSE-SU-2015:0692-1 https://lists.suse.com/pipermail/sle-security-updates/2015-April/001338.html E-Mail link for SUSE-SU-2015:0692-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/905870 SUSE Bug 905870 https://bugzilla.suse.com/905872 SUSE Bug 905872 https://bugzilla.suse.com/912943 SUSE Bug 912943 https://bugzilla.suse.com/922220 SUSE Bug 922220 https://bugzilla.suse.com/922222 SUSE Bug 922222 https://bugzilla.suse.com/923142 SUSE Bug 923142 https://www.suse.com/security/cve/CVE-2014-8767/ SUSE CVE CVE-2014-8767 page https://www.suse.com/security/cve/CVE-2014-8769/ SUSE CVE CVE-2014-8769 page https://www.suse.com/security/cve/CVE-2014-9140/ SUSE CVE CVE-2014-9140 page https://www.suse.com/security/cve/CVE-2015-0261/ SUSE CVE CVE-2015-0261 page https://www.suse.com/security/cve/CVE-2015-2154/ SUSE CVE CVE-2015-2154 page SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP3-TERADATA SUSE Linux Enterprise Server for SAP Applications 11 SP3 tcpdump-3.9.8-1.27.1 tcpdump-3.9.8-1.27.1 as a component of SUSE Linux Enterprise Desktop 11 SP3 tcpdump-3.9.8-1.27.1 as a component of SUSE Linux Enterprise Server 11 SP3 tcpdump-3.9.8-1.27.1 as a component of SUSE Linux Enterprise Server 11 SP3-TERADATA tcpdump-3.9.8-1.27.1 as a component of SUSE Linux Enterprise Server for SAP Applications 11 SP3 Integer underflow in the olsr_print function in tcpdump 3.9.6 through 4.6.2, when in verbose mode, allows remote attackers to cause a denial of service (crash) via a crafted length value in an OLSR frame. CVE-2014-8767 SUSE Linux Enterprise Desktop 11 SP3:tcpdump-3.9.8-1.27.1 SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1 SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1 SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2015/suse-su-20150692-1/ https://www.suse.com/security/cve/CVE-2014-8767.html CVE-2014-8767 https://bugzilla.suse.com/905870 SUSE Bug 905870 https://bugzilla.suse.com/905871 SUSE Bug 905871 tcpdump 3.8 through 4.6.2 might allow remote attackers to obtain sensitive information from memory or cause a denial of service (packet loss or segmentation fault) via a crafted Ad hoc On-Demand Distance Vector (AODV) packet, which triggers an out-of-bounds memory access. CVE-2014-8769 SUSE Linux Enterprise Desktop 11 SP3:tcpdump-3.9.8-1.27.1 SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1 SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1 SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1 moderate 6.4 AV:N/AC:L/Au:N/C:P/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2015/suse-su-20150692-1/ https://www.suse.com/security/cve/CVE-2014-8769.html CVE-2014-8769 https://bugzilla.suse.com/905871 SUSE Bug 905871 https://bugzilla.suse.com/905872 SUSE Bug 905872 Buffer overflow in the ppp_hdlc function in print-ppp.c in tcpdump 4.6.2 and earlier allows remote attackers to cause a denial of service (crash) cia a crafted PPP packet. CVE-2014-9140 SUSE Linux Enterprise Desktop 11 SP3:tcpdump-3.9.8-1.27.1 SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1 SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1 SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2015/suse-su-20150692-1/ https://www.suse.com/security/cve/CVE-2014-9140.html CVE-2014-9140 https://bugzilla.suse.com/923142 SUSE Bug 923142 Integer signedness error in the mobility_opt_print function in the IPv6 mobility printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (out-of-bounds read and crash) or possibly execute arbitrary code via a negative length value. CVE-2015-0261 SUSE Linux Enterprise Desktop 11 SP3:tcpdump-3.9.8-1.27.1 SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1 SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1 SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1 moderate 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2015/suse-su-20150692-1/ https://www.suse.com/security/cve/CVE-2015-0261.html CVE-2015-0261 https://bugzilla.suse.com/922220 SUSE Bug 922220 The osi_print_cksum function in print-isoclns.c in the ethernet printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a crafted (1) length, (2) offset, or (3) base pointer checksum value. CVE-2015-2154 SUSE Linux Enterprise Desktop 11 SP3:tcpdump-3.9.8-1.27.1 SUSE Linux Enterprise Server 11 SP3-TERADATA:tcpdump-3.9.8-1.27.1 SUSE Linux Enterprise Server 11 SP3:tcpdump-3.9.8-1.27.1 SUSE Linux Enterprise Server for SAP Applications 11 SP3:tcpdump-3.9.8-1.27.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2015/suse-su-20150692-1/ https://www.suse.com/security/cve/CVE-2015-2154.html CVE-2015-2154 https://bugzilla.suse.com/922222 SUSE Bug 922222