pkgsrc-Bugs archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

Re: pkg/57586: tcpdump used in this NetBSD is vulnerable

To: gnats-bugs%netbsd.org@localhost
Subject: Re: pkg/57586: tcpdump used in this NetBSD is vulnerable
From: Benny Siegert <bsiegert%gmail.com@localhost>
Date: Thu, 17 Aug 2023 14:19:07 +0200

On Thu, Aug 17, 2023 at 7:08 AM <thresh416%outlook.com@localhost> wrote:

> As CVE-2020-8037 described, the ppp decapsulator in tcpdump 4.9.3 can be convinced to allocate a large amount of memory, which is still used in this project.

Is this talking about tcpdump in base, or about the net/tcpdump
package in pkgsrc? The latter is at 4.99.4.

-- 
Benny

References:
- pkg/57586: tcpdump used in this NetBSD is vulnerable
  - From: thresh416

Prev by Date: PR/57539 CVS commit: pkgsrc/graphics/tiff
Next by Date: Re: pkg/57586: tcpdump used in this NetBSD is vulnerable
Previous by Thread: pkg/57586: tcpdump used in this NetBSD is vulnerable
Next by Thread: Re: pkg/57586: tcpdump used in this NetBSD is vulnerable
Indexes:

Home | Main Index | Thread Index | Old Index