[El-errata] ELSA-2007:0066 Low: Enterprise Linux 3 wireshark security update
el-errata at oss.oracle.com
el-errata at oss.oracle.com
Thu Mar 22 22:07:06 PDT 2007
Enterprise Linux Security Advisory ELSA-2007:0066
https://rhn.redhat.com/errata/RHSA-2007-0066.html
The following updated rpms for Enterprise Linux 3 have been uploaded to
the Unbreakable Linux Network:
i386:
wireshark-0.99.5-EL3.1.0.1.i386.rpm
wireshark-gnome-0.99.5-EL3.1.0.1.i386.rpm
x86_64:
wireshark-0.99.5-EL3.1.0.1.x86_64.rpm
wireshark-gnome-0.99.5-EL3.1.0.1.x86_64.rpm
SRPMS:
http://oss.oracle.com/el3/SRPMS-updates/wireshark-0.99.5-EL3.1.0.1.src.rpm
Description of changes:
[0.99.5-EL3.1.0.1]
- Add oracle-ocfs2-network.patch
[0.99.5-1]
- multiple security issues fixed (#225689)
- CVE-2007-0459 - The TCP dissector could hang or crash while
reassembling HTTP packets
- CVE-2007-0459 - The HTTP dissector could crash.
- CVE-2007-0457 - On some systems, the IEEE 802.11 dissector could crash.
- CVE-2007-0456 - On some systems, the LLT dissector could crash.
[0.99.4-1]
- upgrade to 0.99.4, fixes multiple security issues (#211993)
- CVE-2006-5468 - The HTTP dissector could dereference a null pointer.
- CVE-2006-5469 - The WBXML dissector could crash.
- CVE-2006-5470 - The LDAP dissector (and possibly others) could crash.
- CVE-2006-4805 - Basic DoS, The XOT dissector could attempt to allocate
a large amount of memory and crash.
- CVE-2006-4574 - Single byte \0 overflow written onto the heap
[0.99.3-EL3.2]
- fix pam file, revert to old ethereal file (#204066)
[0.99.3-EL3.1
- upgrade to 0.99.3
- CVE-2006-4330 Wireshark security issues (CVE-2006-4333 CVE-2006-4332
CVE-2006-4331) (#204045)
[0.99.2-EL3.1]
- build for RHEL3
More information about the El-errata
mailing list