This is an OpenPGP/MIME signed message (RFC 4880 and 3156)
--===============4546791315657687035==
Content-Type: multipart/signed; micalg=pgp-sha512;
protocol="application/pgp-signature";
boundary="fpJhN16jCoQnZG2rdDUvSoGnzPqdLnLON"
This is an OpenPGP/MIME signed message (RFC 4880 and 3156)
--fpJhN16jCoQnZG2rdDUvSoGnzPqdLnLON
Content-Type: multipart/mixed;
boundary="BvlhPzKIGCxRdD71V4sOilV44sOsPCpdi"
--BvlhPzKIGCxRdD71V4sOilV44sOsPCpdi
Content-Type: text/plain; charset=utf-8
Content-Language: en-C
Content-Transfer-Encoding: quoted-printable
==========================================================================
Ubuntu Security Notice USN-4252-1
January 27, 2020
tcpdump vulnerabilities
==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 18.04 LTS
- Ubuntu 16.04 LTS
Summary:
Several security issues were fixed in tcpdump.
Software Description:
- tcpdump: command-line network traffic analyzer
Details:
Multiple security issues were discovered in tcpdump. A remote attacker
could use these issues to cause tcpdump to crash, resulting in a denial of
service, or possibly execute arbitrary code.
Update instructions:
The problem can be corrected by updating your system to the following
package versions:
Ubuntu 18.04 LTS:
tcpdump 4.9.3-0ubuntu0.18.04.1
Ubuntu 16.04 LTS:
tcpdump 4.9.3-0ubuntu0.16.04.1
This update uses a new upstream release, which includes additional bug
fixes. In general, a standard system update will make all the necessary
changes.
References:
https://usn.ubuntu.com/4252-1
CVE-2017-16808, CVE-2018-10103, CVE-2018-10105, CVE-2018-14461,
CVE-2018-14462, CVE-2018-14463, CVE-2018-14464, CVE-2018-14465,
CVE-2018-14466, CVE-2018-14467, CVE-2018-14468, CVE-2018-14469,
CVE-2018-14470, CVE-2018-14879, CVE-2018-14880, CVE-2018-14881,
CVE-2018-14882, CVE-2018-16227, CVE-2018-16228, CVE-2018-16229,
CVE-2018-16230, CVE-2018-16300, CVE-2018-16451, CVE-2018-16452,
CVE-2018-19519, CVE-2019-1010220, CVE-2019-15166, CVE-2019-15167
Package Information:
https://launchpad.net/ubuntu/+source/tcpdump/4.9.3-0ubuntu0.18.04.1
https://launchpad.net/ubuntu/+source/tcpdump/4.9.3-0ubuntu0.16.04.1
--BvlhPzKIGCxRdD71V4sOilV44sOsPCpdi--
--fpJhN16jCoQnZG2rdDUvSoGnzPqdLnLON
Content-Type: application/pgp-signature; name="signature.asc"
Content-Description: OpenPGP digital signature
Content-Disposition: attachment; filename="signature.asc"
-----BEGIN PGP SIGNATURE-----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=2MnG
-----END PGP SIGNATURE-----
--fpJhN16jCoQnZG2rdDUvSoGnzPqdLnLON--
--===============4546791315657687035==
Content-Type: text/plain; charset="utf-8"
MIME-Version: 1.0
Content-Transfer-Encoding: base64
Content-Disposition: inline
LS0gCnVidW50dS1zZWN1cml0eS1hbm5vdW5jZSBtYWlsaW5nIGxpc3QKdWJ1bnR1LXNlY3VyaXR5
LWFubm91bmNlQGxpc3RzLnVidW50dS5jb20KTW9kaWZ5IHNldHRpbmdzIG9yIHVuc3Vic2NyaWJl
IGF0OiBodHRwczovL2xpc3RzLnVidW50dS5jb20vbWFpbG1hbi9saXN0aW5mby91YnVudHUtc2Vj
dXJpdHktYW5ub3VuY2UK
--===============4546791315657687035==--
|
