SB2015092609 - Debian update for tcpdump 

CSH
CYBERSECURITY HELP
Sign In REGISTER

Main Vulnerability Database SB2015092609

SB2015092609 - Debian update for tcpdump

Published: September 26, 2015

Security Bulletin ID SB2015092609
Severity
High
Patch available
YES
Number of vulnerabilities 4
Exploitation vector Remote access
Highest impact Code execution

Breakdown by Severity

High 75% Medium 25%
  • Low
  • Medium
  • High
  • Critical

Description

This security bulletin contains information about 4 secuirty vulnerabilities.


1) Out-of-bounds read (CVE-ID: CVE-2015-0261)

The vulnerability allows a remote attacker to cause DoS condition or execute arbitrary code.

The weakness exists due to integer signedness error in the mobility_opt_print function in the IPv6 mobility printer A remote attacker can supply a negative length value, trigger out-of-bounds read, cause the system crash and possibly execute arbitrary code.

Successful exploitation of the vulnerability may result in system compromise

2) Out-of-bounds write (CVE-ID: CVE-2015-2153)

The vulnerability allows a remote attacker to cause DoS condition or execute arbitrary code.

The weakness exists due to an error in the rpki_rtr_pdu_print function in print-rpki-rtr.c in the TCP printer. A remote attacker can supply a specially crafted header length in an RPKI-RTR Protocol Data Unit (PDU), trigger out-of-bounds read or write and cause the system crash or execute arbitrary code.

Successful exploitation of the vulnerability may result in system compromise.

3) Out-of-bounds read (CVE-ID: CVE-2015-2154)

The vulnerability allows a remote attacker to cause DoS condition on the target system.

The weakness exists due to an error in the osi_print_cksum function in print-isoclns.c in the ethernet printer. A remote attacker can send a specially crafted length offset or base pointer checksum value, trigger out-of-bounds read and cause the system to crash.

Successful exploitation of the vulnerability results in denial of service.

4) Improper input validation (CVE-ID: CVE-2015-2155)

The vulnerability allows a remote attacker to execute arbitrary code.

The weakness exists due to an error in the Force printer. A remote attacker can send a specially crafted request and execute arbitrary code on the target system.

Successful exploitation of the vulnerability may result in system compromise.

Remediation

Install update from vendor's website.

References