-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2008-7894 2008-09-11 11:00:13 --------------------------------------------------------------------------------
Name : wireshark Product : Fedora 8 Version : 1.0.3 Release : 1.fc8 URL : http://www.wireshark.org/ Summary : Network traffic analyzer Description : Wireshark is a network traffic analyzer for Unix-ish operating systems. This package lays base for libpcap, a packet capture and filtering library, contains command-line utilities, contains plugins and documentation for wireshark. A graphical user interface is packaged separately to GTK+ package. -------------------------------------------------------------------------------- Update Information: Upgrade to upstream version 1.0.3. Detailed upstream release notes: http://www.wireshark.org/docs/relnotes/wireshark-1.0.3.html Security issues addressed in the new upstream version: http://www.wireshark.org/security/wnpa- sec-2008-05.html -------------------------------------------------------------------------------- ChangeLog: * Wed Sep 10 2008 Radek Vokál <[EMAIL PROTECTED]> 1.0.3-1 - upgrade to 1.0.3, fixes several security issues (#461254) * Fri Jul 18 2008 Radek Vokál <[EMAIL PROTECTED]> 1.0.2-1 - upgrade to 1.0.2, fixes a few security issues * Thu Apr 3 2008 Radek Vokál <[EMAIL PROTECTED]> 1.0.0-1 - upgrade to 1.0.0 * Wed Dec 19 2007 Radek Vokál <[EMAIL PROTECTED]> 0.99.7-2 - fix crash with consolehelper (#317681) * Tue Dec 18 2007 Radek Vokál <[EMAIL PROTECTED]> 0.99.7-1 - upgrade to 0.99.7 - switch to libsmi from net-snmp - disable ADNS due to its lack of Ipv6 support -------------------------------------------------------------------------------- References: [ 1 ] Bug #461242 - CVE-2008-3146 wireshark: multiple buffer overflows in NCP dissector https://bugzilla.redhat.com/show_bug.cgi?id=461242 [ 2 ] Bug #461243 - CVE-2008-3932 wireshark: infinite loop in the NCP dissector https://bugzilla.redhat.com/show_bug.cgi?id=461243 [ 3 ] Bug #461244 - CVE-2008-3933 wireshark: crash triggered by zlib-compressed packet data https://bugzilla.redhat.com/show_bug.cgi?id=461244 [ 4 ] Bug #461245 - CVE-2008-3934 wireshark: crash via crafted Tektronix .rf5 file https://bugzilla.redhat.com/show_bug.cgi?id=461245 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update wireshark' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at http://fedoraproject.org/keys -------------------------------------------------------------------------------- _______________________________________________ Fedora-package-announce mailing list Fedora-package-announce@redhat.com http://www.redhat.com/mailman/listinfo/fedora-package-announce