MDVSA-2012:015

Package name

wireshark

Date

2012-02-09

Advisory ID

MDVSA-2012:015

Affected versions

2011 i586 , 2011 x86_64

Problem description

Multiple file parser and NULL pointer vulnerabilities including a
RLC dissector buffer overflow was found and corrected in Wireshark.

This advisory provides the latest version of Wireshark (1.6.5 )
which is not vulnerable to these issues.

Updated packages

2011 i586

 928f521ace4a9057612993e648d258bd  2011/i586/dumpcap-1.6.5-0.1-mdv2011.0.i586.rpm
 5050ae3283980435098e8b49adad47be  2011/i586/libwireshark1-1.6.5-0.1-mdv2011.0.i586.rpm
 ba897182d44dba67f80ee7090d9f8d12  2011/i586/libwireshark-devel-1.6.5-0.1-mdv2011.0.i586.rpm
 6275cc3611c5587c5dbf46cb34a6fa17  2011/i586/rawshark-1.6.5-0.1-mdv2011.0.i586.rpm
 389cac9860619287201c8ac6527cacb6  2011/i586/tshark-1.6.5-0.1-mdv2011.0.i586.rpm
 f19e04986353d7baa5cc19ebd96f2cc3  2011/i586/wireshark-1.6.5-0.1-mdv2011.0.i586.rpm
 2d504b85fac7e81c954e2014c8bf6f47  2011/i586/wireshark-tools-1.6.5-0.1-mdv2011.0.i586.rpm 
 614335cad461abe9b6a22cd39d4e08a2  2011/SRPMS/wireshark-1.6.5-0.1.src.rpm

2011 x86_64

 2b08fbbbd05b606f24e718bdf63c40bb  2011/x86_64/dumpcap-1.6.5-0.1-mdv2011.0.x86_64.rpm
 8a6ded3e508fdc70409afc73fd01fa0a  2011/x86_64/lib64wireshark1-1.6.5-0.1-mdv2011.0.x86_64.rpm
 700de695c75daffa202e03e07e76bb98  2011/x86_64/lib64wireshark-devel-1.6.5-0.1-mdv2011.0.x86_64.rpm
 d0bc1a32027baddeebbb2b5bf50cf955  2011/x86_64/rawshark-1.6.5-0.1-mdv2011.0.x86_64.rpm
 b50919e405dbb3d6a0a1a24be68c2e2f  2011/x86_64/tshark-1.6.5-0.1-mdv2011.0.x86_64.rpm
 2e0394ddaf1fbc71dd70166cc0e83938  2011/x86_64/wireshark-1.6.5-0.1-mdv2011.0.x86_64.rpm
 90ab7081f9966a9277b32a0a9edd22e0  2011/x86_64/wireshark-tools-1.6.5-0.1-mdv2011.0.x86_64.rpm 
 614335cad461abe9b6a22cd39d4e08a2  2011/SRPMS/wireshark-1.6.5-0.1.src.rpm

References

• http://www.wireshark.org/security/wnpa-sec-2012-03.html
• http://www.wireshark.org/security/wnpa-sec-2012-02.html
• http://www.wireshark.org/security/wnpa-sec-2012-01.html