Fedora alert FEDORA-2011-7821 (wireshark)
| From: | updates@fedoraproject.org | |
| To: | package-announce@lists.fedoraproject.org | |
| Subject: | [SECURITY] Fedora 15 Update: wireshark-1.4.7-1.fc15 | |
| Date: | Thu, 09 Jun 2011 00:00:04 +0000 | |
| Message-ID: | <20110609000004.31CCB11066C@bastion02.phx2.fedoraproject.org> | |
| Archive‑link: | Article |
-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2011-7821 2011-06-03 05:02:46 -------------------------------------------------------------------------------- Name : wireshark Product : Fedora 15 Version : 1.4.7 Release : 1.fc15 URL : http://www.wireshark.org/ Summary : Network traffic analyzer Description : Wireshark is a network traffic analyzer for Unix-ish operating systems. This package lays base for libpcap, a packet capture and filtering library, contains command-line utilities, contains plugins and documentation for wireshark. A graphical user interface is packaged separately to GTK+ package. -------------------------------------------------------------------------------- Update Information: Upgrade to latest release, fixing few security bugs. See http://www.wireshark.org/docs/relnotes/wireshark-1.4.7.html. -------------------------------------------------------------------------------- ChangeLog: * Thu Jun 2 2011 Jan Safranek <jsafrane@redhat.com> - 1.4.7-1 - upgrade to 1.4.7 - see http://www.wireshark.org/docs/relnotes/wireshark-1.4.7.html * Thu May 19 2011 Steve Dickson <steved@redhat.com> - 1.4.6-3 - Improved the NFS4.1 patcket dissectors -------------------------------------------------------------------------------- References: [ 1 ] Bug #710109 - CVE-2011-2175 wireshark: Heap-based buffer over-read in Visual Networks dissector https://bugzilla.redhat.com/show_bug.cgi?id=710109 [ 2 ] Bug #710097 - CVE-2011-2174 wireshark: Double-free flaw by uncompressing of a zlib compressed packet https://bugzilla.redhat.com/show_bug.cgi?id=710097 [ 3 ] Bug #710039 - CVE-2011-1959 wireshark: Stack-based buffer over-read from tvbuff buffer when reading snoop capture files https://bugzilla.redhat.com/show_bug.cgi?id=710039 [ 4 ] Bug #710021 - CVE-2011-1957 wireshark: Infinite loop in the DICOM dissector https://bugzilla.redhat.com/show_bug.cgi?id=710021 [ 5 ] Bug #710184 - CVE-2011-1958 wireshark (64bit): NULL pointer dereference by processing of a corrupted Diameter dictionary file https://bugzilla.redhat.com/show_bug.cgi?id=710184 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update wireshark' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list package-announce@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/package-...