Bug 626462 (CVE-2017-11541, CVE-2017-11542, CVE-2017-11543, CVE-2017-11544)

Summary:	<net-analyzer/tcpdump-4.9.1: multiple vulnerabilities
Product:	Gentoo Security	Reporter:	Agostino Sarubbo <ago>
Component:	Vulnerabilities	Assignee:	Gentoo Security <security>
Status:	RESOLVED FIXED
Severity:	minor	CC:	netmon
Priority:	Normal	Flags:	stable-bot: sanity-check+
Version:	unspecified
Hardware:	All
OS:	Linux
Whiteboard:	B3 [glsa blocked cve]
Package list:	=net-analyzer/tcpdump-4.9.1	Runtime testing required:	No

Description Agostino Sarubbo gentoo-dev

2017-07-28 15:23:26 UTC

https://bugzilla.redhat.com/show_bug.cgi?id=1475359
https://bugzilla.redhat.com/show_bug.cgi?id=1475358
https://bugzilla.redhat.com/show_bug.cgi?id=1475355
https://bugzilla.redhat.com/show_bug.cgi?id=1475352

fixed in 4.9.1

Comment 1 Sergei Trofimovich (RETIRED) gentoo-dev

2017-08-08 14:05:06 UTC

ia64 stable

Comment 2 Markus Meier gentoo-dev

2017-08-08 20:41:37 UTC

arm stable

Comment 3 Richard Freeman gentoo-dev

2017-08-19 20:56:15 UTC

amd64 stable

Comment 4 Thomas Deutschmann (RETIRED) gentoo-dev

2017-08-20 16:59:34 UTC

x86 stable

Comment 5 Matt Turner gentoo-dev

2017-08-31 15:22:00 UTC

alpha stable

Comment 6 Aaron Bauman (RETIRED) gentoo-dev

2017-09-10 22:17:53 UTC

sparc was dropped to exp.

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=b5901d8f716555a1479f12313a2925fcadd177a9

Comment 7 Christopher Díaz Riveros (RETIRED) gentoo-dev

2017-09-25 03:43:39 UTC

Added to GLSA Request.

For more information refer to bug 630110

Gentoo Security Padawan
ChrisADR

Comment 8 GLSAMaker/CVETool Bot gentoo-dev

2017-09-25 11:56:06 UTC

This issue was resolved and addressed in
 GLSA 201709-23 at https://security.gentoo.org/glsa/201709-23
by GLSA coordinator Aaron Bauman (b-man).