Updated wireshark packages fix security vulnerabilities
Publication date: 09 Jan 2015Modification date: 09 Jan 2015
Type: security
Affected Mageia releases : 4
CVE: CVE-2015-0562 , CVE-2015-0563 , CVE-2015-0564
Description
Updated wireshark packages fix security vulnerabilities:
The DEC DNA Routing Protocol dissector could crash (CVE-2015-0562).
The SMTP dissector could crash (CVE-2015-0563).
Wireshark could crash while decypting TLS/SSL sessions (CVE-2015-0564).
References
- https://bugs.mageia.org/show_bug.cgi?id=14983
- https://www.wireshark.org/security/wnpa-sec-2015-03.html
- https://www.wireshark.org/security/wnpa-sec-2015-04.html
- https://www.wireshark.org/security/wnpa-sec-2015-05.html
- https://www.wireshark.org/docs/relnotes/wireshark-1.10.12.html
- https://www.wireshark.org/news/20150107.html
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0562
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0563
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0564
SRPMS
4/core
- wireshark-1.10.12-1.mga4