| |||||||||||||||||||
Pardus alert 2011-50 (wireshark)
------------------------------------------------------------------------ Pardus Linux Security Advisory 2011-50 security@pardus.org.tr ------------------------------------------------------------------------ Date: 2011-02-28 Severity: 2 Type: Local ------------------------------------------------------------------------ Summary ======= A vulnerability has been fixed in wireshark, which can be exploit by malicious people to cause a denial of service or to execute code. Description =========== CVE-2011-0713: An attacker can invite the victim to open a DCT3 capture with Wireshark, in order to create an overflow, leading to a denial of service or to code execution. Affected packages: Pardus 2009: wireshark, all before 1.4.3-41-18 Pardus 2011: wireshark, all before 1.4.3-42-p11 Resolution ========== There are update(s) for wireshark. You can update them via Package Manager or with a single command from console: Pardus 2009: pisi up wireshark Pardus 2011: pisi up wireshark References ========== * http://bugs.pardus.org.tr/show_bug.cgi?id=16989 * http://vigilance.fr/vulnerability/Wireshark-buffer-overfl... dct3trace-10374 ------------------------------------------------------------------------ _______________________________________________ Pardus-Security mailing list Pardus-Security@pardus.org.tr http://liste.pardus.org.tr/mailman/listinfo/pardus-security (Log in to post comments)
|
|||||||||||||||||||