Debian alert DLA-1967-1 (libpcap)

From:
             
 
Abhijith PA <abhijith@disroot.org> 
To:
             
 
debian-lts-announce@lists.debian.org 
Subject:
             
 
[SECURITY] [DLA 1967-1] libpcap security update 
Date:
             
 
Tue, 22 Oct 2019 01:17:50 +0530
Message-ID:
             
 
<d1f32f68-056f-3031-ca38-57abf3513cab@disroot.org>
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Package        : libpcap
Version        : 1.6.2-2+deb8u1
CVE ID         : CVE-2019-15165
Debian Bug     : 941697


libpcap (Packet CAPture), a low-level network monitoring library, does
not properly validate the PHB header length before allocating memory.
This update added sanity checks for PHB header length.


For Debian 8 "Jessie", this problem has been fixed in version
1.6.2-2+deb8u1.

We recommend that you upgrade your libpcap packages.

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
-----BEGIN PGP SIGNATURE-----
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=FG5B
-----END PGP SIGNATURE-----