Full Disclosure mailing list archives

Previous By Date Next
Previous By Thread Next

rPSA-2008-0336-1 tshark wireshark

From: rPath Update Announcements <announce-noreply () rpath com>
Date: Thu, 11 Dec 2008 17:52:40 -0500
rPath Security Advisory: 2008-0336-1
Published: 2008-12-11
Products:
    rPath Linux 1

Rating: Minor
Exposure Level Classification:
    Indirect Deterministic Denial of Service
Updated Versions:
    tshark=conary.rpath.com@rpl:1/1.0.5-0.1-1
    wireshark=conary.rpath.com@rpl:1/1.0.5-0.1-1

rPath Issue Tracking System:
    https://issues.rpath.com/browse/RPL-2904

References:
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5285
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4680
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4681
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4682
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4683
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4684
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4685

Description:
    Previous versions of the wireshark package are vulnerable to multiple
    Denial of Service attacks in which malformed packets may cause the
    application to hang or crash.  It has not been determined that these
    vulnerabilities can be exploited to execute malicious code.

http://wiki.rpath.com/Advisories:rPSA-2008-0336

Copyright 2008 rPath, Inc.
This file is distributed under the terms of the MIT License.
A copy is available at http://www.rpath.com/permanent/mit-license.html

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Previous By Date Next
Previous By Thread Next

Current thread: