Fedora Linux 8729 Published by

A tcpdump security update has been released for Fedora 33.



SECURITY: Fedora 33 Update: tcpdump-4.9.3-5.fc33


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2020-fae2e1f2bc
2020-11-30 01:08:19.325535
--------------------------------------------------------------------------------

Name : tcpdump
Product : Fedora 33
Version : 4.9.3
Release : 5.fc33
URL :   http://www.tcpdump.org
Summary : A network traffic monitoring tool
Description :
Tcpdump is a command-line tool for monitoring network traffic.
Tcpdump can capture and display the packet headers on a particular
network interface or on all interfaces. Tcpdump can display all of
the packet headers, or just the ones that match particular criteria.

Install tcpdump if you need a program to monitor network traffic.

--------------------------------------------------------------------------------
Update Information:

Security fix for CVE-2020-8037
--------------------------------------------------------------------------------
ChangeLog:

* Fri Nov 27 2020 Michal Ruprich - 14:4.9.3-5
- Fix for CVE-2020-8037
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #1895080 - CVE-2020-8037 tcpdump: ppp decapsulator can be convinced to allocate a large amount of memory
  https://bugzilla.redhat.com/show_bug.cgi?id=1895080
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2020-fae2e1f2bc' at the command
line. For more information, refer to the dnf documentation available at
  http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
  https://fedoraproject.org/keys