Advisories ยป MGASA-2013-0347

Updated wireshark packages fix multiple vulnerabilities

Publication date: 22 Nov 2013
Type: security
Affected Mageia releases : 2 , 3
CVE: CVE-2013-6336 , CVE-2013-6337 , CVE-2013-6338 , CVE-2013-6339 , CVE-2013-6340

Description

Updated wireshark packages fix security vulnerabilities:

The IEEE 802.15.4 dissector could crash (CVE-2013-6336).

The NBAP dissector could crash (CVE-2013-6337).

The SIP dissector could crash (CVE-2013-6338).

The OpenWire dissector could go into a large loop (CVE-2013-6339).

The TCP dissector could crash (CVE-2013-6340).
                

References

SRPMS

3/core

2/core