Fedora 18 Update: dsniff-2.4-0.17.b1.fc18

Sun Dec 22 05:42:11 UTC 2013

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2013-23804
2013-12-22 04:25:40
--------------------------------------------------------------------------------

Name        : dsniff
Product     : Fedora 18
Version     : 2.4
Release     : 0.17.b1.fc18
URL         : http://www.monkey.org/~dugsong/dsniff/
Summary     : Tools for network auditing and penetration testing
Description :
A collection of tools for network auditing and penetration testing. Dsniff,
filesnarf, mailsnarf, msgsnarf, urlsnarf and webspy allow to passively monitor
a network for interesting data (passwords, e-mail, files). Arpspoof, dnsspoof
and macof facilitate the interception of network traffic normally unavailable
to an attacker (e.g, due to layer-2 switching). Sshmitm and webmitm implement
active monkey-in-the-middle attacks against redirected SSH and HTTPS sessions
by exploiting weak bindings in ad-hoc PKI.

--------------------------------------------------------------------------------
Update Information:

- Corrected patch which touches tabular data stream protocol handler
- Added a patch to add both communication partners in arpspoof
- Added patch to allow multiple targets to be imitated simultaniously
- Added patch to allow the selection of source hw address in arpspoof
- Added a patch which fixes and modernizes the POP decoder
- Fixed segmentation faults related to libnet_name2addr4() (#1009879)
- Added a patch to fix bit-shift in pntohl() macro (#714958, #850496)
- Avoid xdrs being used without being initialised (#715042, #850494)
--------------------------------------------------------------------------------
ChangeLog:

* Fri Dec 20 2013 Robert Scheck <robert at fedoraproject.org> 2.4-0.17.b1
- Corrected patch which touches tabular data stream protocol handler
- Added a patch to add both communication partners in arpspoof
- Added patch to allow multiple targets to be imitated simultaniously
- Added patch to allow the selection of source hw address in arpspoof
- Added a patch which fixes and modernizes the POP decoder
- Fixed segmentation faults related to libnet_name2addr4() (#1009879)
- Added a patch to fix bit-shift in pntohl() macro (#714958, #850496)
- Avoid xdrs being used without being initialised (#715042, #850494)
* Sat Aug  3 2013 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 2.4-0.16.b1
- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
* Wed Feb 13 2013 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 2.4-0.15.b1
- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1009879 - [abrt] dsniff-2.4-0.14.b1.fc18: ___vsnprintf_chk: Process /usr/sbin/arpspoof was killed by signal 11 (SIGSEGV)
        https://bugzilla.redhat.com/show_bug.cgi?id=1009879
  [ 2 ] Bug #714958 - [PATCH] incorrect bit-shift in pntohl() macro
        https://bugzilla.redhat.com/show_bug.cgi?id=714958
  [ 3 ] Bug #850496 - [PATCH] incorrect bit-shift in pntohl() macro
        https://bugzilla.redhat.com/show_bug.cgi?id=850496
  [ 4 ] Bug #715042 - dsniff segfaults when decoding RPC packets on x86_64
        https://bugzilla.redhat.com/show_bug.cgi?id=715042
  [ 5 ] Bug #850494 - dsniff segfaults when decoding RPC packets on x86_64
        https://bugzilla.redhat.com/show_bug.cgi?id=850494
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use 
su -c 'yum update dsniff' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------