tcpdump-4.99.0-9.el9

エラータID: AXSA:2024-8003:03

Release date: 
Thursday, May 30, 2024 - 17:58
Subject: 
tcpdump-4.99.0-9.el9
Affected Channels: 
MIRACLE LINUX 9 for x86_64
Severity: 
Moderate
Description: 

The tcpdump packages contain the tcpdump utility for monitoring network traffic. The tcpdump utility can capture and display the packet headers on a particular network interface or on all interfaces.

Security Fix(es):

* tcpslice: use-after-free in extract_slice() (CVE-2021-41043)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the MIRACLE LINUX 9.4 Release Notes linked from the References section.

CVE-2021-41043
Use after free in tcpslice triggers AddressSanitizer, no other confirmed impact.

Solution: 

Update packages.

CVEs: 
CVE-2021-41043
Use after free in tcpslice triggers AddressSanitizer, no other confirmed impact.
Additional Info: 

N/A

Download: 

SRPMS
  1. tcpdump-4.99.0-9.el9.src.rpm
    MD5: 4130560fd286733b6f270892bd5d0c6a
    SHA-256: 9ea258c089ccf56400628cfd39e8a19271c7ec1caf2294069dfd41fae60be4ec
    Size: 2.04 MB

Asianux Server 9 for x86_64
  1. tcpdump-4.99.0-9.el9.x86_64.rpm
    MD5: 628e1979174e1b0b159b4ab226d9338e
    SHA-256: 118594aa166c5ad59b245e15d0dc3f0c339e52368904d1289367d3673d32edeb
    Size: 537.15 kB