NEOHAPSIS - Peace of Mind Through Integrity and Insight

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Secunia Advisories> 2003-q2

[sec-adv] Red Hat update for tcpdump

From: Secunia Security Advisories (sec-advsecunia.com)
Date: Tue May 20 2003 - 09:21:38 CDT

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

TITLE:
Red Hat update for tcpdump

READ ONLINE:
http://www.secunia.com/advisories/8813/

CRITICAL:
Not critical

IMPACT:

WHERE:
Local system

OPERATING SYSTEM:
RedHat Linux 9
RedHat Linux 7.1
RedHat Linux 8.0
RedHat Linux 7.2
RedHat Linux 7.3

DESCRIPTION:
Red Hat has issued an update to tcpdump.

The reason is that the previous release didn't drop privileges when
executed. Tcpdump would therefore continue running as "root" rather
than the less privileged user "pcap".

This is not a vulnerability in itself, since it could only be
exploited if another vulnerability is present.

SOLUTION:
Red Hat Linux 7.1:

SRPMS:
ftp://updates.redhat.com/7.1/en/os/SRPMS/tcpdump-3.6.3-17.7.1.3.src.rpm

i386:
ftp://updates.redhat.com/7.1/en/os/i386/tcpdump-3.6.3-17.7.1.3.i386.rpm

Red Hat Linux 7.2:

SRPMS:
ftp://updates.redhat.com/7.2/en/os/SRPMS/tcpdump-3.6.3-17.7.2.3.src.rpm

i386:
ftp://updates.redhat.com/7.2/en/os/i386/tcpdump-3.6.3-17.7.2.3.i386.rpm

ia64:
ftp://updates.redhat.com/7.2/en/os/ia64/tcpdump-3.6.3-17.7.2.3.ia64.rpm

Red Hat Linux 7.3:

SRPMS:
ftp://updates.redhat.com/7.3/en/os/SRPMS/tcpdump-3.6.3-17.7.3.3.src.rpm

i386:
ftp://updates.redhat.com/7.3/en/os/i386/tcpdump-3.6.3-17.7.3.3.i386.rpm

Red Hat Linux 8.0:

SRPMS:
ftp://updates.redhat.com/8.0/en/os/SRPMS/tcpdump-3.6.3-17.8.0.3.src.rpm

i386:
ftp://updates.redhat.com/8.0/en/os/i386/tcpdump-3.6.3-17.8.0.3.i386.rpm

Red Hat Linux 9:

SRPMS:
ftp://updates.redhat.com/9/en/os/SRPMS/tcpdump-3.7.2-1.9.1.src.rpm

i386:
ftp://updates.redhat.com/9/en/os/i386/tcpdump-3.7.2-1.9.1.i386.rpm

ORIGINAL ADVISORY:
https://rhn.redhat.com/errata/RHSA-2003-174.html

----------------------------------------------------------------------

Secunia recommends that you verify all advisories you receive, by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

Contact details:
Web : http://www.secunia.com/
E-mail : supportsecunia.com
Tel : +44 (0) 20 7016 2693
Fax : +44 (0) 20 7637 0419

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories

----------------------------------------------------------------------

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]