[Full-disclosure] rPSA-2007-0137-1 tshark wireshark
rPath Update Announcements
announce-noreply at rpath.com
Wed Jul 11 14:11:52 BST 2007
rPath Security Advisory: 2007-0137-1
Published: 2007-07-11
Products: rPath Linux 1
Rating: Major
Exposure Level Classification:
Indirect User Deterministic Denial of Service
Updated Versions:
tshark=/conary.rpath.com at rpl:devel//1/0.99.6-0.1-1
wireshark=/conary.rpath.com at rpl:devel//1/0.99.6-0.1-1
References:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3389
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3390
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3391
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3392
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3393
https://issues.rpath.com/browse/RPL-1498
Description:
Previous versions of the wireshark package are vulnerable
to multiple types of Denial of Service attacks, including
crashes and excessive memory consumption. It has not been
determined that these vulnerabilities can be exploited to
execute malicious code.
Copyright 2007 rPath, Inc.
This file is distributed under the terms of the MIT License.
A copy is available at http://www.rpath.com/permanent/mit-license.html
Full-Disclosure is hosted and sponsored by Secunia.