Alerts This Week
Warning Icon 1 640
Alerts This Week
Warning Icon 1 640

Red Hat: RHSA-2021:0450-01 Low: Jupyter Notebook Vulnerabilities

red hat
Calendar Grey November 7, 2007
Dist Redhat Esm H88
A recent security patch from Red Hat for Wireshark mitigates several Denial of Service vulnerabilities found in their Enterprise Linux offerings, classified with low severity.
New Wireshark packages that fix various security vulnerabilities are now available for Red Hat Enterprise Linux 5

Solution

Before applying this update, make sure that all previously-released errata relevant to your system have been applied.

This update is available via Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at

5. Bug IDs fixed (http://bugzilla.redhat.com/):

245796 - CVE-2007-3389 Wireshark crashes when inspecting HTTP traffic 245797 - CVE-2007-3391 Wireshark loops infinitely when inspecting DCP ETSI traffic 245798 - CVE-2007-3392 Wireshark loops infinitely when inspecting SSL traffic 246221 - CVE-2007-3393 Wireshark corrupts the stack when inspecting BOOTP traffic 246225 - CVE-2007-3390 Wireshark crashes when inspecting iSeries traffic 246229 - CVE-2007-3392 Wireshark crashes when inspecting MMS traffic

6. RPMs required:

Red Hat Enterprise Linux Desktop (v. 5 client):

SRPMS: f49fa8d0277d49cd8eaca3cab3d72990 wireshark-0.99.6-1.el5.src.rpm

i386: 47debd82ab5bc864a3cdd9dd64484282 wireshark-0.99.6-1.el5.i386.rpm 48c58d3ef97e8cf0f77a9301853c2987 wireshark-debuginfo-0.99.6-1.el5.i386.rpm

x86_64: a28ed04bd22158d7cf68bc71589b82c4 wireshark-0.99.6-1.el5.x86_64.rpm 7141bfcf3751bed8454c1b9f3204d8cd wireshark-debuginfo-0.99.6-1.el5.x86_64.rpm

RHEL Desktop Workstation (v. 5 client):

SRPMS: f49fa8d0277d49cd8eaca3cab3d72990 wireshark-0.99.6-1.el5.src.rpm

i386: 48c58d3ef97e8cf0f77a9301853c2987 wireshark-debuginfo-0.99.6-1.el5.i386.rpm b9b63d2c30c0100d5f573ebc81bd4023 wireshark-gnome-0.99.6-1.el5.i386.rpm

x86_64: 7141bfcf3751bed8454c1b9f3204d8cd wireshark-debuginfo-0.99.6-1.el5.x86_64.rpm 8fc46b79d4d74c5434b5a673c38d80d0 wireshark-gnome-0.99.6-1.el5.x86_64.rpm

Red Hat Enterprise Linux (v. 5 server):

SRPMS: f49fa8d0277d49cd8eaca3cab3d72990 wireshark-0.99.6-1.el5.src.rpm

i386: 47debd82ab5bc864a3cdd9dd64484282 wireshark-0.99.6-1.el5.i386.rpm 48c58d3ef97e8cf0f77a9301853c2987 wireshark-debuginfo-0.99.6-1.el5.i386.rpm b9b63d2c30c0100d5f573ebc81bd4023 wireshark-gnome-0.99.6-1.el5.i386.rpm

ia64: 9803781c960202e93b07c15edfac733c wireshark-0.99.6-1.el5.ia64.rpm 8e77dc603a06d63b8e53c813d61e607b wireshark-debuginfo-0.99.6-1.el5.ia64.rpm 3711e4d1653c0aac43ee7b08f5149304 wireshark-gnome-0.99.6-1.el5.ia64.rpm

ppc: 598a710138caa4c174306ba4930201d4 wireshark-0.99.6-1.el5.ppc.rpm b636439b3c01926fd707162d5c902084 wireshark-debuginfo-0.99.6-1.el5.ppc.rpm 7560565717c181cf210eab9438ae5f29 wireshark-gnome-0.99.6-1.el5.ppc.rpm

s390x: 25ac5e44a7a5dcd87c77292999b2501c wireshark-0.99.6-1.el5.s390x.rpm aae09261c552e0c87883df3c155ce2f8 wireshark-debuginfo-0.99.6-1.el5.s390x.rpm 2238fbab472c7f05b7b3ac801f8652dc wireshark-gnome-0.99.6-1.el5.s390x.rpm

x86_64: a28ed04bd22158d7cf68bc71589b82c4 wireshark-0.99.6-1.el5.x86_64.rpm 7141bfcf3751bed8454c1b9f3204d8cd wireshark-debuginfo-0.99.6-1.el5.x86_64.rpm 8fc46b79d4d74c5434b5a673c38d80d0 wireshark-gnome-0.99.6-1.el5.x86_64.rpm

These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/#package

Summary

References

https://www.cve.org/CVERecord?id=CVE-2007-3389 https://www.cve.org/CVERecord?id=CVE-2007-3390 https://www.cve.org/CVERecord?id=CVE-2007-3391 https://www.cve.org/CVERecord?id=CVE-2007-3392 https://www.cve.org/CVERecord?id=CVE-2007-3393 https://www.wireshark.org/docs/relnotes/wireshark-0.99.6.html https://access.redhat.com/security/updates/classification#low

Package List


Severity
low
Lowest
Low
Medium
High
Critical

Advisory ID: RHSA-2007:0710-04
Issue date: 2007-11-07
Updated on: 2007-11-07
Product: Red Hat Enterprise Linux
Keywords: HTTP iSeries DCP ETSI SSL MMS DHCP BOOTP crash loop DoS

Topic

Relevant Releases Architectures

Red Hat Enterprise Linux Desktop (v. 5 client) - i386, x86_64

RHEL Desktop Workstation (v. 5 client) - i386, x86_64

Red Hat Enterprise Linux (v. 5 server) - i386, ia64, ppc, s390x, x86_64

Bugs Fixed

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here