Package name
wireshark
Date
2011-09-28
Advisory ID
MDVSA-2011:138
Affected versions
2011 i586 , 2011 x86_64

Problem description

This advisory updates wireshark to the latest version (1.6.2), fixing
several security issues:

The proto_tree_add_item function in Wireshark 1.6.1, when the IKEv1
protocol dissector is used, allows user-assisted remote attackers
to cause a denial of service (infinite loop) via vectors involving
a malformed IKE packet and many items in a tree (CVE-2011-3266).

Untrusted search path vulnerability in Wireshark 1.4.x before 1.4.9
and 1.6.x before 1.6.2 allows local users to gain privileges via a
Trojan horse Lua script in an unspecified directory (CVE-2011-3360).

The csnStreamDissector function in epan/dissectors/packet-csn1.c in the
CSN.1 dissector in Wireshark 1.6.x before 1.6.2 does not initialize
a certain structure member, which allows remote attackers to cause
a denial of service (application crash) via a malformed packet
(CVE-2011-3482).

Wireshark 1.6.x before 1.6.2 allows remote attackers to cause a
denial of service (application crash) via a malformed capture file
that leads to an invalid root tvbuff, related to a buffer exception
handling vulnerability. (CVE-2011-3483).

The unxorFrame function in epan/dissectors/packet-opensafety.c in the
OpenSafety dissector in Wireshark 1.6.x before 1.6.2 does not properly
validate a certain frame size, which allows remote attackers to cause
a denial of service (loop and application crash) via a malformed packet
(CVE-2011-3484).

The updated packages have been upgraded to the latest 1.6.x version
(1.6.2) which is not vulnerable to these issues.

Updated packages

2011 i586

 55aa0f5494417548c9b5d76369ec09b5  2011/i586/dumpcap-1.6.2-0.1-mdv2011.0.i586.rpm
 eb340d2c623987d48f6287b1b9362be9  2011/i586/libwireshark1-1.6.2-0.1-mdv2011.0.i586.rpm
 6c328e45272e4819142f099bbef88ae5  2011/i586/libwireshark-devel-1.6.2-0.1-mdv2011.0.i586.rpm
 86783d11f12d80557780e11d3fa340aa  2011/i586/rawshark-1.6.2-0.1-mdv2011.0.i586.rpm
 2cc67ce95bcdae903e3b81d89f43b528  2011/i586/tshark-1.6.2-0.1-mdv2011.0.i586.rpm
 f98ea021b7acedb89387a4a14dc85883  2011/i586/wireshark-1.6.2-0.1-mdv2011.0.i586.rpm
 b68deda2c0d7f5601194dd90cb67223c  2011/i586/wireshark-tools-1.6.2-0.1-mdv2011.0.i586.rpm 
 effc2d606f22211c1d886df087493f10  2011/SRPMS/wireshark-1.6.2-0.1.src.rpm

2011 x86_64

 cd242e586f1595156c8d7b7f2ede1784  2011/x86_64/dumpcap-1.6.2-0.1-mdv2011.0.x86_64.rpm
 2ee6685193f2743d34e3d828d06d4e27  2011/x86_64/lib64wireshark1-1.6.2-0.1-mdv2011.0.x86_64.rpm
 983243fe7e43a6bdecf509a0582b46c4  2011/x86_64/lib64wireshark-devel-1.6.2-0.1-mdv2011.0.x86_64.rpm
 a49dc5932987a9f8e0a01618355f230d  2011/x86_64/rawshark-1.6.2-0.1-mdv2011.0.x86_64.rpm
 85eece15ac6512c1d54d448003b55003  2011/x86_64/tshark-1.6.2-0.1-mdv2011.0.x86_64.rpm
 ef09a3b31017149c978cf5fef5852895  2011/x86_64/wireshark-1.6.2-0.1-mdv2011.0.x86_64.rpm
 6970bdce130126c9041c17be46474705  2011/x86_64/wireshark-tools-1.6.2-0.1-mdv2011.0.x86_64.rpm 
 effc2d606f22211c1d886df087493f10  2011/SRPMS/wireshark-1.6.2-0.1.src.rpm

References