-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2011-9638 2011-07-23 01:33:57 --------------------------------------------------------------------------------
Name : wireshark Product : Fedora 15 Version : 1.4.8 Release : 1.fc15 URL : http://www.wireshark.org/ Summary : Network traffic analyzer Description : Wireshark is a network traffic analyzer for Unix-ish operating systems. This package lays base for libpcap, a packet capture and filtering library, contains command-line utilities, contains plugins and documentation for wireshark. A graphical user interface is packaged separately to GTK+ package. -------------------------------------------------------------------------------- Update Information: Wireshark 1.4.8 fixes the following vulnerabilities: The Lucent/Ascend file parser was susceptible to an infinite loop. CVE-2011-2597. The ANSI MAP dissector was susceptible to an infinite loop. CVE-2011-2698. -------------------------------------------------------------------------------- ChangeLog: * Thu Jul 21 2011 Jan Safranek <[email protected]> - 1.4.8.1 - upgrade to 1.4.8 - see http://www.wireshark.org/docs/relnotes/wireshark-1.4.8.html * Thu Jun 16 2011 Jan Safranek <[email protected]> - 1.4.7-2 - fixed Fedora-specific message when user is not part of 'wireshark' group - now it does not contain '<' and '>' characters (#713545) * Thu Jun 2 2011 Jan Safranek <[email protected]> - 1.4.7-1 - upgrade to 1.4.7 - see http://www.wireshark.org/docs/relnotes/wireshark-1.4.7.html * Thu May 19 2011 Steve Dickson <[email protected]> - 1.4.6-3 - Improved the NFS4.1 patcket dissectors -------------------------------------------------------------------------------- References: [ 1 ] Bug #719753 - CVE-2011-2597 wireshark: infinite loop DoS in lucent/ascend file parser https://bugzilla.redhat.com/show_bug.cgi?id=719753 [ 2 ] Bug #723215 - CVE-2011-2698 wireshark: Infinite loop in the ANSI A Interface (IS-634/IOS) dissector https://bugzilla.redhat.com/show_bug.cgi?id=723215 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update wireshark' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list [email protected] https://admin.fedoraproject.org/mailman/listinfo/package-announce
