Alerts This Week
Warning Icon 1 764
Alerts This Week
Warning Icon 1 764

Fedora 9: 2009-5339 Moderate: Wireshark 1.0.8 Security Update

fedora
Calendar Grey May 25, 2009
Dist Fedora Esm H88
Update to Wireshark version 1.0.8 on Fedora 9 to address various security issues and enhance network traffic analysis capabilities.
Upgrade to 1.0.8 fixes various security flaws. https://www.wireshark.org/security/wnpa-sec-2009-02.html https://www.wireshark.org/security/wnpa-sec-2009-03.html

Summary

Wireshark is a network traffic analyzer for Unix-ish operating systems.

This package lays base for libpcap, a packet capture and filtering

library, contains command-line utilities, contains plugins and

documentation for wireshark. A graphical user interface is packaged

separately to GTK+ package.

Update Information:

Upgrade to 1.0.8 fixes various security flaws. https://www.wireshark.org/security/wnpa-sec-2009-02.html https://www.wireshark.org/security/wnpa-sec-2009-03.html

Topics%20covered

Topics Covered

security advisory update Fedora network analyzer security flaw traffic analysis Wireshark

Change Log

* Fri May 22 2009 Radek Vokal 1.0.8-1 - upgrade to 1.0.8 - several security flaws fixed * Fri Apr 10 2009 Radek Vokal 1.0.7-1 - upgrade to 1.0.7 - Several security vulnerabilities have been fixed (Profinet, CPHAP and LDAP dissectors could crash) * Tue Feb 17 2009 Radek Vokal 1.0.6-1 - upgrade to 1.0.6 * Mon Dec 15 2008 Radek Vokal 1.0.5-1 - upgrade to 1.0.5 * Wed Sep 10 2008 Radek Vokál 1.0.3-1 - upgrade to 1.0.3 - Security-related bugs in the NCP dissector, zlib compression code, and Tektronix .rf5 file parser have been fixed. - WPA group key decryption is now supported. - A bug that could cause packets to be wrongly dissected as "Redback Lawful Intercept" has been fixed. * Fri Jul 11 2008 Radek Vokál 1.0.2-1 - upgrade to 1.0.2, several security vulnarabilities fixed * Sun Jun 29 2008 Dennis Gilmore 1.0.0-3 - add sparc arches to -fPIE

References


[ 1 ] Bug #493973 - CVE-2009-1210 wireshark: format string in PROFINET dissector https://bugzilla.redhat.com/show_bug.cgi?id=493973 [ 2 ] Bug #495119 - CVE-2009-1268 Wireshark CHAP dissector crash https://bugzilla.redhat.com/show_bug.cgi?id=495119 [ 3 ] Bug #495121 - CVE-2009-1269 Wireshark Tektronix .rf5 file crash https://bugzilla.redhat.com/show_bug.cgi?id=495121 [ 4 ] Bug #501929 - Wireshark: PCNFSD dissector crash https://bugzilla.redhat.com/show_bug.cgi?id=501929

Update Instructions

This update can be installed with the "yum" update program. Use su -c 'yum update wireshark' at the command line. For more information, refer to "Managing Software with yum", available at .

Severity
important
Lowest
Low
Medium
High
Critical

Name: wireshark
Product: Fedora 9
Version: 1.0.8
Release: 1.fc9
URL: https://www.wireshark.org/
Summary: Network traffic analyzer

Topics%20covered

Topics Covered

security advisory update Fedora network analyzer security flaw traffic analysis Wireshark

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here