[Whitebox-announce] [WBSA-2004:219-01] Updated tcpdump packages fix various vulnerabilities

[John Morris]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- ----------------------------------------------------------------------
                   Security Advisory

Synopsis:          Updated tcpdump packages fix various vulnerabilities
Advisory ID:       [WBSA-2004:219-01]
Issue date:        2004-06-10
Updated on:        2004-06-10
Product:           White Box Enterprise Linux 3.0 (i386)
Keywords:          tcpdump buffer overflow libpcap arpwatch
Cross references:  
Obsoletes:         WBSA-2004:008-09
CVE Names:         CAN-2004-0183 CAN-2004-0184
- ----------------------------------------------------------------------

Note: This one slipped through the cracks.  It was originally issued by RH 
on 2004-05-26.

Updated tcpdump, libpcap, and arpwatch packages fix vulnerabilities in
ISAKMP parsing.

More information is available in Red Hat, Inc's original advisory 
available on their site at:

http://www.redhat.com/archives/enterprise-watch-list/2004-May/msg00010.html

To install this new package on your White Box Enterprise Linux system
use the Up2Date Network or Yum.

Note: Be sure to change the default Up2Date or Yum server from the
initial location to prevent undue load to the whiteboxlinux.org
server, which doesn't have a lot of outbound bandwidth.  The config
files already have entries for mirror sites commented out.

Up2Date's configuration file is at /etc/sysconfig/rhn/sources

Yum's configuration is in /etc/yum.conf


-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (GNU/Linux)
Comment: Made with pgp4pine 1.76

iD8DBQFAyTcrqME6bvnsqA8RAvRqAKDWrJv5LO4BbHFqceIpWv2LWWhCeQCffluv
ucrb0fc9cuTQTQaQKSbrwnQ=
=BNB+
-----END PGP SIGNATURE-----