rPSA-2008-0336-1 tshark wireshark

rPath Update Announcements <announce-noreply@xxxxxxxxx> · Thu, 11 Dec 2008 17:52:40 -0500

rPath Security Advisory: 2008-0336-1
Published: 2008-12-11
Products:
    rPath Linux 1

Rating: Minor
Exposure Level Classification:
    Indirect Deterministic Denial of Service
Updated Versions:
    tshark=conary.rpath.com@rpl:1/1.0.5-0.1-1
    wireshark=conary.rpath.com@rpl:1/1.0.5-0.1-1

rPath Issue Tracking System:
    https://issues.rpath.com/browse/RPL-2904

References:
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5285
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4680
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4681
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4682
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4683
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4684
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4685

Description:
    Previous versions of the wireshark package are vulnerable to multiple
    Denial of Service attacks in which malformed packets may cause the
    application to hang or crash.  It has not been determined that these
    vulnerabilities can be exploited to execute malicious code.

http://wiki.rpath.com/Advisories:rPSA-2008-0336

Copyright 2008 rPath, Inc.
This file is distributed under the terms of the MIT License.
A copy is available at http://www.rpath.com/permanent/mit-license.html