rPath alert rPSA-2008-0278-1 (tshark wireshark) [LWN.net]


From:
    	       rPath Update Announcements <announce-noreply@rpath.com>
To:
    	       security-announce@lists.rpath.com, update-announce@lists.rpath.com
Subject:
    	       rPSA-2008-0278-1 tshark wireshark
Date:
    	       Wed, 17 Sep 2008 12:07:23 -0400
Message-ID:
    	       <48d12b3b.hmG9S4OCTU+mLiTK%announce-noreply@rpath.com>
Cc:
    	       full-disclosure@lists.grok.org.uk, vulnwatch@vulnwatch.org,
 bugtraq@securityfocus.com, lwn@lwn.net
rPath Security Advisory: 2008-0278-1
Published: 2008-09-17
Products:
    rPath Linux 1

Rating: Minor
Exposure Level Classification:
    Indirect Deterministic Denial of Service
Updated Versions:
    tshark=conary.rpath.com@rpl:1/1.0.3-0.1-1
    wireshark=conary.rpath.com@rpl:1/1.0.3-0.1-1

rPath Issue Tracking System:
    https://issues.rpath.com/browse/RPL-2835

References:
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3934
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3146
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3932
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3933

Description:
    Previous versions of the wireshark package are vulnerable to multiple
    Denial of Service attacks in which malformed packets may cause the
    application to hang or crash.  It has not been determined that these
    vulnerabilities can be exploited to execute malicious code.

http://wiki.rpath.com/Advisories:rPSA-2008-0278

Copyright 2008 rPath, Inc.
This file is distributed under the terms of the MIT License.
A copy is available at http://www.rpath.com/permanent/mit-license.html
(Log in to post comments)