Mandriva Update For Wireshark MDVSA-2012:080 (wireshark) Network Vulnerability

Solution

Please Install the Updated Packages.

Insight

Multiple vulnerabilities was found and corrected in Wireshark: It may be possible to make Wireshark hang for long or indefinite periods by injecting a malformed packet onto the wire or by convincing someone to read a malformed packet trace file. It may be possible to make Wireshark crash by injecting a malformed packet onto the wire or by convincing someone to read a malformed packet trace file. This advisory provides the latest version of Wireshark (1.6.8) which is not vulnerable to these issues.

Affected

wireshark on Mandriva Linux 2011.0

Severity

Classification

CVE CVE-2012-2392, CVE-2012-2393, CVE-2012-2394

CVSS	Base Score: 3.3 AV:A/AC:L/Au:N/C:N/I:N/A:P

Related Vulnerabilities

Mandriva Update for rxvt MDVSA-2008:161 (rxvt)
Mandrake Security Advisory MDVSA-2009:091 (mod_perl)
Mandriva Update for samba MDVSA-2010:090 (samba)
Mandriva Update for gnome-screensaver MDVSA-2008:135 (gnome-screensaver)
Mandriva Update for ipmitool MDVSA-2011:196 (ipmitool)

Mandriva Update for wireshark MDVSA-2012:080 (wireshark)

Take action and discover your vulnerabilities