Updated wireshark packages fix security vulnerabilities
Publication date: 28 Jul 2017Modification date: 28 Jul 2017
Type: security
Affected Mageia releases : 6
CVE: CVE-2017-11406 , CVE-2017-11407 , CVE-2017-11408 , CVE-2017-11410 , CVE-2017-11411
Description
The wireshark package has been updated to version 2.2.8, which fixes
several security issues where a malformed packet trace could cause it to
crash or go into an infinite loop, and fixes several other bugs as well.
See the release notes for details.
References
- https://bugs.mageia.org/show_bug.cgi?id=21314
- https://www.wireshark.org/security/wnpa-sec-2017-13.html
- https://www.wireshark.org/security/wnpa-sec-2017-28.html
- https://www.wireshark.org/security/wnpa-sec-2017-34.html
- https://www.wireshark.org/security/wnpa-sec-2017-35.html
- https://www.wireshark.org/security/wnpa-sec-2017-36.html
- https://www.wireshark.org/docs/relnotes/wireshark-2.2.8.html
- https://www.wireshark.org/news/20170718.html
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11406
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11407
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11408
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11410
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11411
SRPMS
6/core
- wireshark-2.2.8-1.mga6