|
|
Subscribe / Log in / New account

Mageia alert MGASA-2017-0226 (wireshark)



From:
    	      Mageia Updates <buildsystem-daemon@mageia.org> 


To:
    	      updates-announce@ml.mageia.org 


Subject:
    	      [updates-announce] MGASA-2017-0226: Updated wireshark packages fix security vulnerabilities 


Date:
    	      Fri, 28 Jul 2017 20:13:00 +0200


Message-ID:
    	      <20170728181300.5D6379F88C@duvel.mageia.org>


MGASA-2017-0226 - Updated wireshark packages fix security vulnerabilities

Publication date: 28 Jul 2017
URL: http://advisories.mageia.org/MGASA-2017-0226.html
Type: security
Affected Mageia releases: 6
CVE: CVE-2017-11406,
     CVE-2017-11407,
     CVE-2017-11408,
     CVE-2017-11410,
     CVE-2017-11411

Description:
The wireshark package has been updated to version 2.2.8, which fixes
several security issues where a malformed packet trace could cause it to
crash or go into an infinite loop, and fixes several other bugs as well.
See the release notes for details.

References:
- https://bugs.mageia.org/show_bug.cgi?id=21314
- https://www.wireshark.org/security/wnpa-sec-2017-13.html
- https://www.wireshark.org/security/wnpa-sec-2017-28.html
- https://www.wireshark.org/security/wnpa-sec-2017-34.html
- https://www.wireshark.org/security/wnpa-sec-2017-35.html
- https://www.wireshark.org/security/wnpa-sec-2017-36.html
- https://www.wireshark.org/docs/relnotes/wireshark-2.2.8.html
- https://www.wireshark.org/news/20170718.html
- http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11406
- http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11407
- http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11408
- http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11410
- http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11411

SRPMS:
- 6/core/wireshark-2.2.8-1.mga6
to post comments


Copyright © 2025, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds