| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Thu, 11 Dec 2008 17:52:40 -0500
From: rPath Update Announcements <announce-noreply@...th.com>
To: security-announce@...ts.rpath.com,
update-announce@...ts.rpath.com
Cc: full-disclosure@...ts.grok.org.uk, vulnwatch@...nwatch.org,
bugtraq@...urityfocus.com, lwn@....net
Subject: rPSA-2008-0336-1 tshark wireshark
rPath Security Advisory: 2008-0336-1
Published: 2008-12-11
Products:
rPath Linux 1
Rating: Minor
Exposure Level Classification:
Indirect Deterministic Denial of Service
Updated Versions:
tshark=conary.rpath.com@rpl:1/1.0.5-0.1-1
wireshark=conary.rpath.com@rpl:1/1.0.5-0.1-1
rPath Issue Tracking System:
https://issues.rpath.com/browse/RPL-2904
References:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5285
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4680
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4681
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4682
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4683
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4684
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4685
Description:
Previous versions of the wireshark package are vulnerable to multiple
Denial of Service attacks in which malformed packets may cause the
application to hang or crash. It has not been determined that these
vulnerabilities can be exploited to execute malicious code.
http://wiki.rpath.com/Advisories:rPSA-2008-0336
Copyright 2008 rPath, Inc.
This file is distributed under the terms of the MIT License.
A copy is available at http://www.rpath.com/permanent/mit-license.html
Powered by blists - more mailing lists