From owner-freebsd-security  Tue Nov  7 10:27:30 2000
Delivered-To: freebsd-security@freebsd.org
Received: from homer.softweyr.com (mail.dobox.com [208.187.122.44])
	by hub.freebsd.org (Postfix) with ESMTP id 8F60837B479
	for <security@freebsd.org>; Tue,  7 Nov 2000 10:27:27 -0800 (PST)
Received: from [127.0.0.1] (helo=softweyr.com ident=Fools trust ident!)
	by homer.softweyr.com with esmtp (Exim 3.16 #1)
	id 13tDTk-0000KO-00
	for security@freebsd.org; Tue, 07 Nov 2000 11:28:16 -0700
Message-ID: <3A0849C0.750F0EF6@softweyr.com>
Date: Tue, 07 Nov 2000 11:28:16 -0700
From: Wes Peters <wes@softweyr.com>
Organization: Softweyr LLC
X-Mailer: Mozilla 4.75 [en] (X11; U; Linux 2.2.12 i386)
X-Accept-Language: en
MIME-Version: 1.0
To: security@freebsd.org
Subject: Re: FreeBSD Security Advisory: FreeBSD-SA-00:61.tcpdump [REISSUED]
References: <20001106195827.5C6BA37B4CF@hub.freebsd.org>
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

FreeBSD Security Advisories wrote:
> 
> II.  Problem Description
> 
> Several overflowable buffers were discovered in the version of tcpdump
> included in FreeBSD, during internal source code auditing.

Does this problem manifest itself in the ethereal port as well?  I don't 
know how closely related the code between the two might be.  I've taken
a cursory look and it isn't identical, but tcpdump is mentioned several
places in the source.

-- 
            "Where am I, and what am I doing in this handbasket?"

Wes Peters                                                         Softweyr LLC
wes@softweyr.com                                           http://softweyr.com/


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message