Multiple vulnerabilities in tcpdump could result in execution of arbitrary code or Denial of Service.
|Package||net-analyzer/tcpdump on all architectures|
|Affected versions||< 4.6.2-r1|
|Unaffected versions||>= 4.6.2-r1|
tcpdump is a tool for capturing and inspecting network traffic.
Multiple vulnerabilities have been discovered in tcpdump:
A remote attacker may be able to send a specially crafted packet, possibly resulting in execution of arbitrary code or a Denial of Service condition.
There is no known workaround at this time.
All tcpdump users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot --verbose ">=net-analyzer/tcpdump-4.6.2-r1"
February 07, 2015
February 07, 2015: 1