Debian: DSA 1049-1 Critical: Ethereal Remote Issues Resolved
debian
May 2, 2006
Updated package.
Topics Covered
Summary
The OID printing routine is susceptible to an off-by-one error.
CVE-2006-1933
The UMA and BER dissectors could go into an infinite loop.
CVE-2006-1934
The Network Instruments file code could overrun a buffer.
CVE-2006-1935
The COPS dissector contains a potential buffer overflow.
CVE-2006-1936
The telnet dissector contains a buffer overflow.
CVE-2006-1937
Bugs in the SRVLOC and AIM dissector, and in the statistics
counter could crash ethereal.
CVE-2006-1938
Null pointer dereferences in the SMB PIPE dissector and when
reading a malformed Sniffer capture could crash ethereal.
CVE-2006-1939
Null pointer dereferences in the ASN.1, GSM SMS, RPC and
ASN.1-based dissector and an invalid display filter could crash
ethereal.
CVE-2006-1940
The SNDCP dissector could cause an unintended abortion.
For the old stable distribution (woody) these problems have been fixed in
version 0.9.4-1woody15.
For the stable distribution (sar...
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!