LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

LWN.net Weekly Edition for May 23, 2013

An "enum" for Python 3

An unexpected perf feature

LWN.net Weekly Edition for May 16, 2013

A look at the PyPy 2.0 release

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

Pardus alert 2011-43 (wireshark)



From:
    	      Meltem  <meltem@pardus.org.tr> 


To:
    	      pardus-security@pardus.org.tr 


Subject:
    	      [Pardus-security] [PLSA 2011-43] Wireshark: Uninitialized Pointer 


Date:
    	      Mon, 14 Feb 2011 12:33:01 +0200


Message-ID:
    	      <201102141233.01758.meltem@pardus.org.tr>


Archive-link:
    	      Article, Thread
              


------------------------------------------------------------------------
Pardus Linux Security Advisory 2011-43            security@pardus.org.tr
------------------------------------------------------------------------
      Date: 2011-02-14
  Severity: 3
      Type: Remote
------------------------------------------------------------------------

Summary
=======

A vulnerability has  been  fixed  in  wireshark,  which  allows  remote 
attackers to cause a denial of service or have unspecified other impact 


Description
===========

CVE-2011-0538: 

Wireshark 1.5.0, 1.4.3, and  earlier  frees  an  uninitialized  pointer 
during processing of a .pcap file in the pcap-ng format,  which  allows 
remote attackers to cause a denial of service  (memory  corruption)  or 
possibly have unspecified other impact via a malformed file. 





Affected packages:

  Pardus 2009:
    wireshark, all before 1.4.3-40-17


Resolution
==========

There are update(s) for wireshark. You  can  update  them  via  Package 
Manager or with a single command from console: 

    pisi up wireshark

References
==========

  * http://bugs.pardus.org.tr/show_bug.cgi?id=16809
  * http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0538

------------------------------------------------------------------------

_______________________________________________
Pardus-Security mailing list
Pardus-Security@pardus.org.tr
http://liste.pardus.org.tr/mailman/listinfo/pardus-security
(Log in to post comments)

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds