Alerts This Week
Warning Icon 1 727
Alerts This Week
Warning Icon 1 727

Scientific Linux: 2014-1676-2 Important: Wireshark Buffer Overflow

Calendar Oct 22, 2014 User Avatar LinuxSecurity Advisories
2 - 3 min read
Scientific Large Esm H500
Topics%20covered

Topics Covered

security advisory moderate denial of service update wireshark scientific linux
Moderate: wireshark security update 
Date: Wed, 22 Oct 2014 17:05:16 +0000
Reply-To: scientific-linux-users@
Sender: Security Errata for Scientific Linux
 
From: Pat Riehecky 
Subject: Security ERRATA Moderate: wireshark on SL6.x, SL7.x i386/x86_64
MIME-Version: 1.0

Synopsis: Moderate: wireshark security update
Advisory ID: SLSA-2014:1676-1
Issue Date: 2014-10-21
CVE Numbers: CVE-2014-6429
 CVE-2014-6430
 CVE-2014-6431
 CVE-2014-6432
 CVE-2014-6428
 CVE-2014-6427
 CVE-2014-6426
 CVE-2014-6425
 CVE-2014-6424
 CVE-2014-6423
 CVE-2014-6421
 CVE-2014-6422
--

Multiple flaws were found in Wireshark. If Wireshark read a malformed
packet off a network or opened a malicious dump file, it could crash or,
possibly, execute arbitrary code as the user running Wireshark.
(CVE-2014-6429, CVE-2014-6430, CVE-2014-6431, CVE-2014-6432)

Several denial of service flaws were found in Wireshark. Wireshark could
crash or stop responding if it read a malformed packet off a network, or
opened a malicious dump file. (CVE-2014-6421, CVE-2014-6422,
CVE-2014-6423, CVE-2014-6424, CVE-2014-6425, CVE-2014-6426, CVE-2014-6427,
CVE-2014-6428)

All running instances of Wireshark must be restarted for the update to
take effect.
--

SL6
 x86_64
 wireshark-1.8.10-8.el6_6.i686.rpm
 wireshark-1.8.10-8.el6_6.x86_64.rpm
 wireshark-debuginfo-1.8.10-8.el6_6.i686.rpm
 wireshark-debuginfo-1.8.10-8.el6_6.x86_64.rpm
 wireshark-gnome-1.8.10-8.el6_6.x86_64.rpm
 wireshark-devel-1.8.10-8.el6_6.i686.rpm
 wireshark-devel-1.8.10-8.el6_6.x86_64.rpm
 i386
 wireshark-1.8.10-8.el6_6.i686.rpm
 wireshark-debuginfo-1.8.10-8.el6_6.i686.rpm
 wireshark-gnome-1.8.10-8.el6_6.i686.rpm
 wireshark-devel-1.8.10-8.el6_6.i686.rpm
SL7
 x86_64
 wireshark-1.10.3-12.el7_0.i686.rpm
 wireshark-1.10.3-12.el7_0.x86_64.rpm
 wireshark-debuginfo-1.10.3-12.el7_0.i686.rpm
 wireshark-debuginfo-1.10.3-12.el7_0.x86_64.rpm
 wireshark-gnome-1.10.3-12.el7_0.x86_64.rpm
 wireshark-devel-1.10.3-12.el7_0.i686.rpm
 wireshark-devel-1.10.3-12.el7_0.x86_64.rpm

- Scientific Linux Development Team
Your message here