Gentoo Forums
Gentoo Forums
Gentoo Forums
Quick Search: in

  FAQ | Search | Memberlist | Usergroups | Statistics | Profile | Log in to check your private messages | Log in | Register

[ GLSA 201308-05 ] Wireshark: Multiple vulnerabilities
 View unanswered posts
View posts from last 24 hours

 
Reply to topic    Gentoo Forums Forum Index News & Announcements
View previous topic :: View next topic  
Author Message
GLSA
Advocate
Advocate


Joined: 12 May 2004
Posts: 2663
PostPosted: Wed Aug 28, 2013 12:26 pm    Post subject: [ GLSA 201308-05 ] Wireshark: Multiple vulnerabilities Reply with quote
Gentoo Linux Security Advisory

Title: Wireshark: Multiple vulnerabilities (GLSA 201308-05)
Severity: high
Exploitable: remote
Date: August 28, 2013
Updated: August 30, 2013
Bug(s): #398549, #427964, #431572, #433990, #470262, #472762, #478694
ID: 201308-05

Synopsis

Multiple vulnerabilities have been found in Wireshark, allowing
remote attackers to execute arbitrary code or cause Denial of Service.


Background

Wireshark is a versatile network protocol analyzer.

Affected Packages

Package: net-analyzer/wireshark
Vulnerable: < 1.10.1
Unaffected: >= 1.10.1
Unaffected: >= 1.8.9 < 1.8.10
Architectures: All supported architectures


Description

Multiple vulnerabilities have been discovered in Wireshark. Please
review the CVE identifiers referenced below for details.


Impact

A remote attacker could possibly execute arbitrary code with the
privileges of the process or cause a Denial of Service condition.


Workaround

There is no known workaround at this time.

Resolution

All Wireshark 1.10 users should upgrade to the latest version:
Code:
# emerge --sync
      # emerge --ask --oneshot --verbose ">=net-analyzer/wireshark-1.10.1"
   
All Wireshark 1.8 users should upgrade to the latest version:
Code:
# emerge --sync
      # emerge --ask --oneshot --verbose ">=net-analyzer/wireshark-1.8.9"
   


References

CVE-2012-0041
CVE-2012-0042
CVE-2012-0043
CVE-2012-0066
CVE-2012-0067
CVE-2012-0068
CVE-2012-3548
CVE-2012-4048
CVE-2012-4049
CVE-2012-4285
CVE-2012-4286
CVE-2012-4287
CVE-2012-4288
CVE-2012-4289
CVE-2012-4290
CVE-2012-4291
CVE-2012-4292
CVE-2012-4293
CVE-2012-4294
CVE-2012-4295
CVE-2012-4296
CVE-2012-4297
CVE-2012-4298
CVE-2013-3555
CVE-2013-3556
CVE-2013-3557
CVE-2013-3558
CVE-2013-3559
CVE-2013-3560
CVE-2013-3561
CVE-2013-3562
CVE-2013-4074
CVE-2013-4075
CVE-2013-4076
CVE-2013-4077
CVE-2013-4078
CVE-2013-4079
CVE-2013-4080
CVE-2013-4081
CVE-2013-4082
CVE-2013-4083
CVE-2013-4920
CVE-2013-4921
CVE-2013-4922
CVE-2013-4923
CVE-2013-4924
CVE-2013-4925
CVE-2013-4926
CVE-2013-4927
CVE-2013-4928
CVE-2013-4929
CVE-2013-4930
CVE-2013-4931
CVE-2013-4932
CVE-2013-4933
CVE-2013-4934
CVE-2013-4935
CVE-2013-4936

Last edited by GLSA on Sun Mar 08, 2015 4:31 am; edited 5 times in total
Back to top
View user's profile Send private message
Display posts from previous:   
Reply to topic    Gentoo Forums Forum Index News & Announcements All times are GMT
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum



 Links: forums.gentoo.org | www.gentoo.org | bugs.gentoo.org | wiki.gentoo.org | forum-mods@gentoo.org

Copyright 2001-2024 Gentoo Foundation, Inc. Designed by Kyle Manna © 2003; Style derived from original subSilver theme. | Hosting by Gossamer Threads Inc. © | Powered by phpBB 2.0.23-gentoo-p11 © 2001, 2002 phpBB Group
Privacy Policy