diff options
author | Cy Schubert <cy@FreeBSD.org> | 2019-12-21 21:02:50 +0000 |
---|---|---|
committer | Cy Schubert <cy@FreeBSD.org> | 2019-12-21 21:02:50 +0000 |
commit | 39e421e8cedb2a1e819ab3f703a22b4c3da76b61 (patch) | |
tree | 56178d26e15e471a95b43ed33c4fb5937333399d /contrib/tcpdump/CHANGES | |
parent | 57e22627f9459b9dfd6043b32e02ecfcf205e176 (diff) | |
parent | f91036a44a189fa5d0b5f1c6dea0a396a0f928c0 (diff) | |
download | src-39e421e8cedb2a1e819ab3f703a22b4c3da76b61.tar.gz src-39e421e8cedb2a1e819ab3f703a22b4c3da76b61.zip |
MFV r353143 (phillip):
Update tcpdump from 4.9.2 to 4.9.3.
MFC after: 2 weeks
Notes
Notes:
svn path=/head/; revision=355989
Diffstat (limited to 'contrib/tcpdump/CHANGES')
-rw-r--r-- | contrib/tcpdump/CHANGES | 33 |
1 files changed, 33 insertions, 0 deletions
diff --git a/contrib/tcpdump/CHANGES b/contrib/tcpdump/CHANGES index 09acbb260497..f09be3446a62 100644 --- a/contrib/tcpdump/CHANGES +++ b/contrib/tcpdump/CHANGES @@ -1,3 +1,36 @@ +Friday, September 20, 2019, by mcr@sandelman.ca + A huge thank you to Denis, Francois-Xavier and Guy who did much of the heavy lifting. + Summary for 4.9.3 tcpdump release + Fix buffer overflow/overread vulnerabilities: + CVE-2017-16808 (AoE) + CVE-2018-14468 (FrameRelay) + CVE-2018-14469 (IKEv1) + CVE-2018-14470 (BABEL) + CVE-2018-14466 (AFS/RX) + CVE-2018-14461 (LDP) + CVE-2018-14462 (ICMP) + CVE-2018-14465 (RSVP) + CVE-2018-14881 (BGP) + CVE-2018-14464 (LMP) + CVE-2018-14463 (VRRP) + CVE-2018-14467 (BGP) + CVE-2018-10103 (SMB - partially fixed, but SMB printing disabled) + CVE-2018-10105 (SMB - too unreliably reproduced, SMB printing disabled) + CVE-2018-14880 (OSPF6) + CVE-2018-16451 (SMB) + CVE-2018-14882 (RPL) + CVE-2018-16227 (802.11) + CVE-2018-16229 (DCCP) + CVE-2018-16301 (was fixed in libpcap) + CVE-2018-16230 (BGP) + CVE-2018-16452 (SMB) + CVE-2018-16300 (BGP) + CVE-2018-16228 (HNCP) + CVE-2019-15166 (LMP) + CVE-2019-15167 (VRRP) + Fix for cmdline argument/local issues: + CVE-2018-14879 (tcpdump -V) + Sunday September 3, 2017 denis@ovsienko.info Summary for 4.9.2 tcpdump release Do not use getprotobynumber() for protocol name resolution. Do not do |