Advisories » MGASA-2017-0173

Updated ettercap packages fix security vulnerability

Publication date: 14 Jun 2017
Modification date: 14 Jun 2017
Type: security
Affected Mageia releases : 5
CVE: CVE-2017-8366

Description

The strescape function in ec_strings.c in Ettercap 0.8.2 allows remote
attackers to cause a denial of service (heap-based buffer overflow and
application crash) or possibly have unspecified other impact via a
crafted filter that is mishandled by etterfilter (CVE-2017-8366).
                

References

• https://bugs.mageia.org/show_bug.cgi?id=20772
• https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/BK4IYANXQO2REIN2XSKIFCETM7EQJAUZ/
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8366

SRPMS

5/core

• ettercap-0.8.2-1.1.mga5