Gentoo Forums
Gentoo Forums
Gentoo Forums
Quick Search: in

  FAQ | Search | Memberlist | Usergroups | Statistics | Profile | Log in to check your private messages | Log in | Register

[ GLSA 201110-02 ] Wireshark: Multiple vulnerabilities
 View unanswered posts
View posts from last 24 hours

 
Reply to topic    Gentoo Forums Forum Index News & Announcements
View previous topic :: View next topic  
Author Message
GLSA
Advocate
Advocate


Joined: 12 May 2004
Posts: 2663
PostPosted: Sun Oct 16, 2011 12:26 pm    Post subject: [ GLSA 201110-02 ] Wireshark: Multiple vulnerabilities Reply with quote
Gentoo Linux Security Advisory

Title: Wireshark: Multiple vulnerabilities (GLSA 201110-02)
Severity: normal
Exploitable: local, remote
Date: October 09, 2011
Bug(s): #323859, #330479, #339401, #346191, #350551, #354197, #357237, #363895, #369683, #373961, #381551, #383823, #386179
ID: 201110-02

Synopsis

Multiple vulnerabilities in Wireshark allow for the remote
execution of arbitrary code, or a Denial of Service condition.


Background

Wireshark is a versatile network protocol analyzer.

Affected Packages

Package: net-analyzer/wireshark
Vulnerable: < 1.4.9
Unaffected: >= 1.4.9
Architectures: All supported architectures


Description

Multiple vulnerabilities have been discovered in Wireshark. Please
review the CVE identifiers referenced below for details.


Impact

A remote attacker could send specially crafted packets on a network
being monitored by Wireshark, entice a user to open a malformed packet
trace file using Wireshark, or deploy a specially crafted Lua script for
use by Wireshark, possibly resulting in the execution of arbitrary code,
or a Denial of Service condition.


Workaround

There is no known workaround at this time.

Resolution

All Wireshark users should upgrade to the latest version:
Code:
# emerge --sync
      # emerge --ask --oneshot --verbose ">=net-analyzer/wireshark-1.4.9"
   


References

CVE-2010-2283
CVE-2010-2284
CVE-2010-2285
CVE-2010-2286
CVE-2010-2287
CVE-2010-2992
CVE-2010-2993
CVE-2010-2994
CVE-2010-2995
CVE-2010-3133
CVE-2010-3445
CVE-2010-4300
CVE-2010-4301
CVE-2010-4538
CVE-2011-0024
CVE-2011-0444
CVE-2011-0445
CVE-2011-0538
CVE-2011-0713
CVE-2011-1138
CVE-2011-1139
CVE-2011-1140
CVE-2011-1141
CVE-2011-1142
CVE-2011-1143
CVE-2011-1590
CVE-2011-1591
CVE-2011-1592
CVE-2011-1956
CVE-2011-1957
CVE-2011-1958
CVE-2011-1959
CVE-2011-2174
CVE-2011-2175
CVE-2011-2597
CVE-2011-2698
CVE-2011-3266
CVE-2011-3360
CVE-2011-3482
CVE-2011-3483
Back to top
View user's profile Send private message
Display posts from previous:   
Reply to topic    Gentoo Forums Forum Index News & Announcements All times are GMT
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum



 Links: forums.gentoo.org | www.gentoo.org | bugs.gentoo.org | wiki.gentoo.org | forum-mods@gentoo.org

Copyright 2001-2024 Gentoo Foundation, Inc. Designed by Kyle Manna © 2003; Style derived from original subSilver theme. | Hosting by Gossamer Threads Inc. © | Powered by phpBB 2.0.23-gentoo-p11 © 2001, 2002 phpBB Group
Privacy Policy