Paketname
wireshark
Datum
2012-05-23
Advisory ID
MDVSA-2012:080
Betroffene Versionen
2011 i586 , 2011 x86_64

Problembeschreibung

Multiple vulnerabilities was found and corrected in Wireshark:

It may be possible to make Wireshark hang for long or indefinite
periods by injecting a malformed packet onto the wire or by convincing
someone to read a malformed packet trace file.

It may be possible to make Wireshark crash by injecting a malformed
packet onto the wire or by convincing someone to read a malformed
packet trace file.

This advisory provides the latest version of Wireshark (1.6.8) which
is not vulnerable to these issues.

Aktualisierte Pakete

2011 i586

 16a577c0711df7fc568696402109d6b4  2011/i586/dumpcap-1.6.8-0.1-mdv2011.0.i586.rpm
 eada57c1d6f02e7ebf14fbb3789c5bbe  2011/i586/libwireshark1-1.6.8-0.1-mdv2011.0.i586.rpm
 e9e98acba88c6ee3ab1d2e51536463aa  2011/i586/libwireshark-devel-1.6.8-0.1-mdv2011.0.i586.rpm
 8017f3883e54db24eeee1e0f7b3c820f  2011/i586/rawshark-1.6.8-0.1-mdv2011.0.i586.rpm
 bc33e60ea854669c81652090880c430b  2011/i586/tshark-1.6.8-0.1-mdv2011.0.i586.rpm
 52cc8b37b569f8bc31800eacf347a7bd  2011/i586/wireshark-1.6.8-0.1-mdv2011.0.i586.rpm
 b8cd1dca05b43e22accf8cd4a1517946  2011/i586/wireshark-tools-1.6.8-0.1-mdv2011.0.i586.rpm 
 c7678d090d491738155aa4bb6ae2b09d  2011/SRPMS/wireshark-1.6.8-0.1.src.rpm

2011 x86_64

 25b79e5781f78e7c7a0f239406ad3a5a  2011/x86_64/dumpcap-1.6.8-0.1-mdv2011.0.x86_64.rpm
 851832cf2439b688a491620ec43318ce  2011/x86_64/lib64wireshark1-1.6.8-0.1-mdv2011.0.x86_64.rpm
 6c659fbff4840bc333d90e4d72a656eb  2011/x86_64/lib64wireshark-devel-1.6.8-0.1-mdv2011.0.x86_64.rpm
 9b37711290f16de47b594397de980256  2011/x86_64/rawshark-1.6.8-0.1-mdv2011.0.x86_64.rpm
 2aa4ab2ba5d5b4f914b91b7d0e608c15  2011/x86_64/tshark-1.6.8-0.1-mdv2011.0.x86_64.rpm
 86cdbf15b98aaacb3d42bb43dfdf2c8f  2011/x86_64/wireshark-1.6.8-0.1-mdv2011.0.x86_64.rpm
 d72665f272867ca3d4af106c1a751f91  2011/x86_64/wireshark-tools-1.6.8-0.1-mdv2011.0.x86_64.rpm 
 c7678d090d491738155aa4bb6ae2b09d  2011/SRPMS/wireshark-1.6.8-0.1.src.rpm

Referenzen