User: Password:
|
|
Subscribe / Log in / New account

Fedora alert FEDORA-2011-9638 (wireshark)

From:  updates@fedoraproject.org
To:  package-announce@lists.fedoraproject.org
Subject:  [SECURITY] Fedora 15 Update: wireshark-1.4.8-1.fc15
Date:  Wed, 10 Aug 2011 03:21:15 +0000
Message-ID:  <20110810032115.DE1621107F3@bastion02.phx2.fedoraproject.org>
Archive-link:  Article, Thread

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2011-9638 2011-07-23 01:33:57 -------------------------------------------------------------------------------- Name : wireshark Product : Fedora 15 Version : 1.4.8 Release : 1.fc15 URL : http://www.wireshark.org/ Summary : Network traffic analyzer Description : Wireshark is a network traffic analyzer for Unix-ish operating systems. This package lays base for libpcap, a packet capture and filtering library, contains command-line utilities, contains plugins and documentation for wireshark. A graphical user interface is packaged separately to GTK+ package. -------------------------------------------------------------------------------- Update Information: Wireshark 1.4.8 fixes the following vulnerabilities: The Lucent/Ascend file parser was susceptible to an infinite loop. CVE-2011-2597. The ANSI MAP dissector was susceptible to an infinite loop. CVE-2011-2698. -------------------------------------------------------------------------------- ChangeLog: * Thu Jul 21 2011 Jan Safranek <jsafrane@redhat.com> - 1.4.8.1 - upgrade to 1.4.8 - see http://www.wireshark.org/docs/relnotes/wireshark-1.4.8.html * Thu Jun 16 2011 Jan Safranek <jsafrane@redhat.com> - 1.4.7-2 - fixed Fedora-specific message when user is not part of 'wireshark' group - now it does not contain '<' and '>' characters (#713545) * Thu Jun 2 2011 Jan Safranek <jsafrane@redhat.com> - 1.4.7-1 - upgrade to 1.4.7 - see http://www.wireshark.org/docs/relnotes/wireshark-1.4.7.html * Thu May 19 2011 Steve Dickson <steved@redhat.com> - 1.4.6-3 - Improved the NFS4.1 patcket dissectors -------------------------------------------------------------------------------- References: [ 1 ] Bug #719753 - CVE-2011-2597 wireshark: infinite loop DoS in lucent/ascend file parser https://bugzilla.redhat.com/show_bug.cgi?id=719753 [ 2 ] Bug #723215 - CVE-2011-2698 wireshark: Infinite loop in the ANSI A Interface (IS-634/IOS) dissector https://bugzilla.redhat.com/show_bug.cgi?id=723215 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update wireshark' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list package-announce@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/package-...


(Log in to post comments)


Copyright © 2017, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds