Paketname
wireshark
Datum
2009-12-03
Advisory ID
MDVSA-2009:292-1
Betroffene Versionen
2008.0 i586 , 2008.0 x86_64

Problembeschreibung

Vulnerabilities have been discovered and corrected in wireshark,
affecting DCERPC/NT dissector, which allows remote attackers to cause
a denial of service (NULL pointer dereference and application crash)
via a file that records a malformed packet trace (CVE-2009-3550); and
in wiretap/erf.c which allows remote attackers to execute arbitrary
code or cause a denial of service (application crash) via a crafted
erf file (CVE-2009-3829).

The wireshark package has been updated to fix these vulnerabilities.

Update:

Packages for 2008.0 are provided for Corporate Desktop 2008.0 customers

Aktualisierte Pakete

2008.0 i586

 8b075be8db6b26deba7933a925b12f5d  2008.0/i586/dumpcap-1.0.10-0.1mdv2008.0.i586.rpm
 3477bcc8d3e2257489b4ae8573f5f8d0  2008.0/i586/libwireshark0-1.0.10-0.1mdv2008.0.i586.rpm
 451163f6f02baa7c1eb48fab26e8adfa  2008.0/i586/libwireshark-devel-1.0.10-0.1mdv2008.0.i586.rpm
 b457625c43f2d605e18e6537b958f0b7  2008.0/i586/rawshark-1.0.10-0.1mdv2008.0.i586.rpm
 1ffce24777b986cccd506aee471a14e9  2008.0/i586/tshark-1.0.10-0.1mdv2008.0.i586.rpm
 18467254cc21a36f25e0ac47013c90b5  2008.0/i586/wireshark-1.0.10-0.1mdv2008.0.i586.rpm
 54bcf934bbf85cf9317abd3f693c1286  2008.0/i586/wireshark-tools-1.0.10-0.1mdv2008.0.i586.rpm 
 927ccd36d358084a70554eda33b015df  2008.0/SRPMS/wireshark-1.0.10-0.1mdv2008.0.src.rpm

2008.0 x86_64

 4320e20a9c0a61623c859ba20c4030a4  2008.0/x86_64/dumpcap-1.0.10-0.1mdv2008.0.x86_64.rpm
 4886aa56bd3daf5e906343b92d1c7d57  2008.0/x86_64/lib64wireshark0-1.0.10-0.1mdv2008.0.x86_64.rpm
 d3d9e1847a4b3ba05a00614e71d76664  2008.0/x86_64/lib64wireshark-devel-1.0.10-0.1mdv2008.0.x86_64.rpm
 ce78c38b33a2c3c0edde2355845a3218  2008.0/x86_64/rawshark-1.0.10-0.1mdv2008.0.x86_64.rpm
 41e36f27fa93dfd8ecacae797403412a  2008.0/x86_64/tshark-1.0.10-0.1mdv2008.0.x86_64.rpm
 9b3829112d7250b78294d0f65c71d85b  2008.0/x86_64/wireshark-1.0.10-0.1mdv2008.0.x86_64.rpm
 3e6d92fbdae924c7bb131fd867895695  2008.0/x86_64/wireshark-tools-1.0.10-0.1mdv2008.0.x86_64.rpm 
 927ccd36d358084a70554eda33b015df  2008.0/SRPMS/wireshark-1.0.10-0.1mdv2008.0.src.rpm

Referenzen