Updated wireshark packages fix multiple vulnerabilies
Publication date: 08 Mar 2014Modification date: 08 Mar 2014
Type: security
Affected Mageia releases : 3
CVE: CVE-2014-2281 , CVE-2014-2283 , CVE-2014-2299
Description
Updated wireshark packages fix security vulnerabilities:
The NFS dissector could crash (CVE-2014-2281).
The RLC dissector could crash (CVE-2014-2283).
The MPEG file parser could overflow a buffer (CVE-2014-2299).
References
- https://www.wireshark.org/security/wnpa-sec-2014-01.html
- https://www.wireshark.org/security/wnpa-sec-2014-03.html
- https://www.wireshark.org/security/wnpa-sec-2014-04.html
- http://www.wireshark.org/docs/relnotes/wireshark-1.8.13.html
- http://www.wireshark.org/news/20140307.html
- https://bugs.mageia.org/show_bug.cgi?id=12962
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2281
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2283
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2299
SRPMS
3/core
- wireshark-1.8.13-1.mga3