tcpdump (4.99.4-3ubuntu4.24.04.1) noble; urgency=medium
* Fixes segfault when running as the root user. (LP: #2071891)
- d/p/drop-privs-after-opening-savefile.diff
-- Ghadi Elie Rahme <ghadi.rahme@canonical.com> Wed, 10 Sep 2025 15:28:48 +0000
tcpdump (4.99.4-3ubuntu4) noble; urgency=high
* No change rebuild against libssl3t64.
-- Julian Andres Klode <juliank@ubuntu.com> Mon, 08 Apr 2024 16:50:51 +0200
tcpdump (4.99.4-3ubuntu3) noble; urgency=medium
* No-change rebuild for CVE-2024-3094
-- Steve Langasek <steve.langasek@ubuntu.com> Sun, 31 Mar 2024 17:18:58 +0000
tcpdump (4.99.4-3ubuntu2) noble; urgency=medium
* No-change rebuild against libssl3t64
-- Steve Langasek <steve.langasek@ubuntu.com> Tue, 05 Mar 2024 01:24:11 +0000
tcpdump (4.99.4-3ubuntu1) mantic; urgency=medium
* Merge with Debian unstable. Remaining changes:
- debian/usr.sbin.tcpdump: allow tcpdump printing to stdout/stderr
when running from a container (LP #1667016)
* Dropped:
- d/usr.sbin.tcpdump: Allow pcapng files (LP #2024017)
[In 4.99.4-3]
-- Andreas Hasenack <andreas@canonical.com> Tue, 01 Aug 2023 11:49:37 -0300
tcpdump (4.99.4-3) unstable; urgency=medium
* Allow *.pcapng in AppArmor policy, thanks to Chris Kuethe for the
patch (closes: #1039993).
* Pick up patch from upstream PR#812 to avoid the call to droproot()
altogether if called with `-Z root', thanks to Tj (closes: #1035842).
* Override 'spelling-error-in-binary' and move 'set -e' inside maintscripts.
-- Romain Francoise <rfrancoise@debian.org> Sat, 22 Jul 2023 17:23:56 +0200
tcpdump (4.99.4-2) unstable; urgency=medium
* Upload to unstable.
-- Romain Francoise <rfrancoise@debian.org> Sat, 17 Jun 2023 17:29:12 +0200
tcpdump (4.99.4-1) experimental; urgency=medium
* New upstream release.
* Mark Debian-specific patches as "Forwarded: not-needed" in metadata.
-- Romain Francoise <rfrancoise@debian.org> Mon, 10 Apr 2023 16:57:18 +0200
tcpdump (4.99.3-1ubuntu2) mantic; urgency=medium
[ Chris Kuethe ]
* d/usr.sbin.tcpdump: Allow pcapng files (LP: #2024017)
-- Andreas Hasenack <andreas@canonical.com> Fri, 14 Jul 2023 18:07:50 -0300
tcpdump (4.99.3-1ubuntu1) lunar; urgency=medium
* debian/usr.sbin.tcpdump: allow tcpdump printing to stdout/stderr when
running from a container (LP: #1667016)
-- Georgia Garcia <georgia.garcia@canonical.com> Fri, 10 Feb 2023 15:17:18 -0300
tcpdump (4.99.3-1) unstable; urgency=medium
* New upstream release.
* Drop Hurd build patch, which doesn't seem to be right anymore.
-- Romain Francoise <rfrancoise@debian.org> Sat, 14 Jan 2023 18:23:25 +0100
tcpdump (4.99.2-1) unstable; urgency=medium
* New upstream release.
* Re-enable all tests.
* Bump Standards-Version to 4.6.2.
-- Romain Francoise <rfrancoise@debian.org> Sun, 01 Jan 2023 18:19:40 +0100
tcpdump (4.99.1-4) unstable; urgency=medium
* debian/usr.bin.tcpdump: account for numerical suffix in filenames
added by -W (closes: #1010688).
-- Romain Francoise <rfrancoise@debian.org> Sun, 08 May 2022 18:25:45 +0200
tcpdump (4.99.1-3) unstable; urgency=medium
* Clean up AppArmor local profile for /usr/sbin/tcpdump, if it's still
empty (closes: #990554).
* Switch to debhelper compat level 13.
* Set `Rules-Requires-Root' to "no".
* Bump Standards-Version to 4.6.0.
-- Romain Francoise <rfrancoise@debian.org> Sun, 12 Sep 2021 18:55:44 +0200
tcpdump (4.99.1-2) unstable; urgency=medium
* Upload to unstable.
-- Romain Francoise <rfrancoise@debian.org> Sun, 15 Aug 2021 17:29:54 +0200
tcpdump (4.99.1-1) experimental; urgency=medium
* New upstream release.
* debian/usr.bin.tcpdump: grant access to *.cap (closes: #989433).
-- Romain Francoise <rfrancoise@debian.org> Sun, 20 Jun 2021 20:48:30 +0200
tcpdump (4.99.0-2) unstable; urgency=medium
* Add autopkgtest support, running the upstream test suite.
-- Romain Francoise <rfrancoise@debian.org> Fri, 15 Jan 2021 23:41:47 +0100
tcpdump (4.99.0-1) unstable; urgency=medium
* New upstream release.
* Mention in debian/NEWS that tcpdump is now installed to /usr/bin
instead of /usr/sbin.
* Rename AppArmor profile to match new binary location and add
maintscript stanza to move the previous conffile if present.
* Temporarily disable tests that require the just-released libpcap 1.10,
we don't want to tie the migration of the two just before the bullseye
freeze.
* Drop unused lintian override.
* Bump Standards-Version to 4.5.1.
-- Romain Francoise <rfrancoise@debian.org> Sun, 03 Jan 2021 21:28:16 +0100
tcpdump (4.9.3-7) unstable; urgency=high
* Cherry-pick commit 32027e1993 from the upstream tcpdump-4.9 branch to fix
untrusted input issue in the PPP printer (CVE-2020-8037, closes: #973877).
-- Romain Francoise <rfrancoise@debian.org> Sat, 07 Nov 2020 13:19:14 +0100
tcpdump (4.9.3-6) unstable; urgency=medium
[ Simon Deziel ]
* debian/usr.sbin.tcpdump: use profile name specifier instead of
'/usr/sbin/tcpdump'.
-- Romain Francoise <rfrancoise@debian.org> Thu, 28 May 2020 19:23:57 +0200
tcpdump (4.9.3-5) unstable; urgency=medium
* Minor packaging fixes courtesy of the Janitor bot and lintian-brush:
+ Set upstream metadata fields: Bug-Submit, Repository, Repository-
Browse.
* Bump Standards-Version to 4.5.0.
-- Romain Francoise <rfrancoise@debian.org> Sat, 09 May 2020 20:42:57 +0200
tcpdump (4.9.3-4) unstable; urgency=medium
* Set upstream metadata fields: Bug-Database.
-- Romain Francoise <rfrancoise@debian.org> Tue, 31 Dec 2019 19:24:04 +0100
tcpdump (4.9.3-3) unstable; urgency=medium
* Minor packaging fixes courtesy of the Janitor bot and lintian-brush:
+ Use secure URI in debian/watch.
+ Use secure URI in Homepage field.
+ Bump debhelper from old 11 to 12.
+ Set debhelper-compat version in Build-Depends.
+ Re-export upstream signing key without extra signatures.
-- Romain Francoise <rfrancoise@debian.org> Sun, 08 Dec 2019 13:56:42 +0100
tcpdump (4.9.3-2) unstable; urgency=medium
* Disable failing IKEv2 test yet again to fix build on ppc64el (again)
(closes: #942171).
-- Romain Francoise <rfrancoise@debian.org> Fri, 11 Oct 2019 20:48:04 +0200
tcpdump (4.9.3-1) unstable; urgency=medium
* New upstream release, with fixes for 24 different CVEs (closes: #941698).
* Build-depend on libpcap >= 1.9.1 to make all build-time tests pass.
* Re-enable IKEv2 test.
* Bump Standards-Version to 4.4.1.
-- Romain Francoise <rfrancoise@debian.org> Thu, 10 Oct 2019 21:31:38 +0200
tcpdump (4.9.3~git20190901-2) unstable; urgency=medium
* Disable failing IKEv2 test again to fix build on ppc64el.
-- Romain Francoise <rfrancoise@debian.org> Sat, 07 Sep 2019 12:14:43 +0200
tcpdump (4.9.3~git20190901-1) unstable; urgency=low
* New upstream snapshot from the tcpdump-4.9 branch:
+ Includes fix for CVE-2017-16808 (closes: #881862).
+ Fixes ESP decryption on ppc64el (and others), re-enable tests.
* Drop root privileges by default (closes: #935112):
+ debian/rules: Configure --with-user=tcpdump.
+ debian/tcpdump.post{inst,rm}: Create/delete a 'tcpdump' system group
and user.
+ debian/control: Add dependency on adduser.
+ debian/patches/drop-privs-after-opening-savefile.diff: New patch
(from Fedora) to drop root privileges *after* opening the savefile
when possible, to alleviate possible inconvenience if the target
directory is not writable by user tcpdump.
+ debian/patches/drop-privs-silently.diff: New patch (from Fedora) to
drop root privileges silently.
+ debian/usr.sbin.tcpdump: Add chown capability, and update rules
about device discovery.
+ debian/NEWS: Mention how to run tcpdump as root.
* Bump Standards-Version to 4.4.0.
-- Romain Francoise <rfrancoise@debian.org> Sun, 01 Sep 2019 13:05:24 +0200
# Older entries have been removed from this changelog.
# To read the complete changelog use `apt changelog tcpdump`.
Generated by dwww version 1.16 on Mon Dec 15 20:51:34 CET 2025.