Advisories » MGASA-2023-0154

Updated tcpdump packages fix security vulnerability

Publication date: 24 Apr 2023
Type: security
Affected Mageia releases : 8
CVE: CVE-2023-1801

Description

The SMB protocol decoder in tcpdump version 4.99.3 can perform an
out-of-bounds write when decoding a crafted network packet.
(CVE-2023-1801)
                

References

• https://bugs.mageia.org/show_bug.cgi?id=31782
• https://git.tcpdump.org/tcpdump/blob/HEAD:/CHANGES
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1801

SRPMS

8/core

• tcpdump-4.99.2-1.1.mga8