-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.7 Date: Tue, 6 Apr 2004 19:39:24 +0200 Source: tcpdump Binary: tcpdump Architecture: source i386 Version: 3.7.2-4 Distribution: unstable Urgency: high Maintainer: Torsten Landschoff <torsten@debian.org> Changed-By: Romain Francoise <rfrancoise@debian.org> Description: tcpdump - A powerful tool for network monitoring and data acquisition Changes: tcpdump (3.7.2-4) unstable; urgency=high . * Urgency high due to security fixes. * Backport changes from upstream CVS to fix ISAKMP payload handling denial-of-service vulnerabilities (CAN-2004-0183, CAN-2004-0184). Detailed changes (with corresponding upstream revisions): + Add length checks in isakmp_id_print() (print-isakmp.c, rev. 1.47) + Add data checks all over the place, change rawprint() prototype and add corresponding return value checks (print-isakmp.c, rev. 1.46) + Add missing ntohs() and change length initialization in isakmp_id_print(), not porting prototype changes (print-isakmp.c, rev. 1.45) Files: 7750f979510d79825c1e3432cc96523f 621 net optional tcpdump_3.7.2-4.dsc 8b26ffbf12d27e02b8739638abeecb5e 9210 net optional tcpdump_3.7.2-4.diff.gz 205f54c2972ba9f2e41e5e992f1cbbf9 204422 net optional tcpdump_3.7.2-4_i386.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.4 (GNU/Linux) iD8DBQFAcvATogN2vsA8Vt8RAho2AJ9OUr4/Fw3So6iirL5jqvqXfsO1CgCfTsPr 5folm77HoQNHHaNXRr1NSNI= =mN4e -----END PGP SIGNATURE----- Accepted: tcpdump_3.7.2-4.diff.gz to pool/main/t/tcpdump/tcpdump_3.7.2-4.diff.gz tcpdump_3.7.2-4.dsc to pool/main/t/tcpdump/tcpdump_3.7.2-4.dsc tcpdump_3.7.2-4_i386.deb to pool/main/t/tcpdump/tcpdump_3.7.2-4_i386.deb -- To UNSUBSCRIBE, email to debian-devel-changes-REQUEST@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org