1ee961a873
- Disabled ikev2pI2 test that fails on some architectures
* Added patch tcpdump-ikev2pI2.patch
- Update to version 4.9.2 [bsc#1057247]
* Security fixes:
- CVE-2017-11108 segfault in STP decoder
- Segfault in ESP decoder with OpenSSL 1.1
- CVE-2017-11543 buffer overflow in SLIP decoder
- CVE-2017-13011 buffer overflow in bittok2str_internal()
- CVE-2017-12989 infinite loop in the RESP parser
- CVE-2017-12990 infinite loop in the ISAKMP parser
- CVE-2017-12995 infinite loop in the DNS parser
- CVE-2017-12997 infinite loop in the LLDP parser
- CVE-2017-11541 buffer over-read in safeputs()
- CVE-2017-11542 buffer over-read in PIMv1 decoder
- CVE-2017-12893 buffer over-read in the SMB/CIFS parser
- CVE-2017-12894 buffer over-read in several protocol parsers
- CVE-2017-12895 buffer over-read in the ICMP parser
- CVE-2017-12896 buffer over-read in the ISAKMP parser
- CVE-2017-12897 buffer over-read in the ISO CLNS parser
- CVE-2017-12898 buffer over-read in the NFS parser
- CVE-2017-12899 buffer over-read in the DECnet parser
- CVE-2017-12900 buffer over-read in the in several protocol parsers
- CVE-2017-12901 buffer over-read in the EIGRP parser
- CVE-2017-12902 buffer over-read in the Zephyr parser
- CVE-2017-12985 buffer over-read in the IPv6 parser
- CVE-2017-12986 buffer over-read in the IPv6 routing header parser
- CVE-2017-12987 buffer over-read in the 802.11 parser
- CVE-2017-12988 buffer over-read in the telnet parser
- CVE-2017-12991 buffer over-read in the BGP parser
OBS-URL: https://build.opensuse.org/request/show/524782
OBS-URL: https://build.opensuse.org/package/show/network:utilities/tcpdump?expand=0&rev=43
73 lines
2.2 KiB
RPMSpec
73 lines
2.2 KiB
RPMSpec
#
|
|
# spec file for package tcpdump
|
|
#
|
|
# Copyright (c) 2017 SUSE LINUX GmbH, Nuernberg, Germany.
|
|
#
|
|
# All modifications and additions to the file contributed by third parties
|
|
# remain the property of their copyright owners, unless otherwise agreed
|
|
# upon. The license for this file, and modifications and additions to the
|
|
# file, is the same license as for the pristine package itself (unless the
|
|
# license for the pristine package is not an Open Source License, in which
|
|
# case the license is the MIT License). An "Open Source License" is a
|
|
# license that conforms to the Open Source Definition (Version 1.9)
|
|
# published by the Open Source Initiative.
|
|
|
|
# Please submit bugfixes or comments via http://bugs.opensuse.org/
|
|
#
|
|
|
|
|
|
%define min_libpcap_version 1.8.1
|
|
Name: tcpdump
|
|
Version: 4.9.2
|
|
Release: 0
|
|
Summary: A Packet Sniffer
|
|
License: BSD-3-Clause
|
|
Group: Productivity/Networking/Diagnostic
|
|
Url: http://www.tcpdump.org/
|
|
Source: http://www.tcpdump.org/release/%{name}-%{version}.tar.gz
|
|
Source1: tcpdump-qeth
|
|
Source2: http://www.tcpdump.org/release/%{name}-%{version}.tar.gz.sig
|
|
Source3: http://www.tcpdump.org/tcpdump-workers.asc#/%{name}.keyring
|
|
# PATCH-FIX-OPENSUSE tcpdump-ikev2pI2.patch - disabled failing test
|
|
Patch0: tcpdump-ikev2pI2.patch
|
|
BuildRequires: libpcap-devel >= %{min_libpcap_version}
|
|
BuildRequires: libsmi-devel
|
|
BuildRequires: openssl-devel
|
|
Requires: libpcap >= %{min_libpcap_version}
|
|
BuildRoot: %{_tmppath}/%{name}-%{version}-build
|
|
|
|
%description
|
|
This program can "read" all or only certain packets going over the
|
|
ethernet. It can be used to debug specific network problems.
|
|
|
|
%prep
|
|
%setup -q
|
|
%patch0 -p1
|
|
|
|
%build
|
|
export CFLAGS="%{optflags} -Wall -DGUESS_TSO -fstack-protector -fno-strict-aliasing"
|
|
%configure \
|
|
--enable-ipv6
|
|
make %{?_smp_mflags}
|
|
|
|
%install
|
|
%make_install
|
|
%ifarch s390 s390x
|
|
install -D -m 755 %{SOURCE1} %{buildroot}%{_sbindir}
|
|
%endif
|
|
rm %{buildroot}/%{_sbindir}/tcpdump.%{version}
|
|
|
|
%check
|
|
make check %{?_smp_mflags}
|
|
|
|
%files
|
|
%defattr(-,root,root)
|
|
%doc CHANGES CREDITS LICENSE README* *.awk
|
|
%{_mandir}/man?/*
|
|
%{_sbindir}/tcpdump
|
|
%ifarch s390 s390x
|
|
%{_sbindir}/tcpdump-qeth
|
|
%endif
|
|
|
|
%changelog
|