Updated wireshark packages fix multiple vulnerabilies
Publication date: 08 Mar 2014Modification date: 08 Mar 2014
Type: security
Affected Mageia releases : 4
CVE: CVE-2014-2281 , CVE-2014-2282 , CVE-2014-2283 , CVE-2014-2299
Description
The NFS dissector could crash (CVE-2014-2281). The M3UA dissector could crash (CVE-2014-2282). The RLC dissector could crash (CVE-2014-2283). The MPEG file parser could overflow a buffer (CVE-2014-2299).
References
- https://www.wireshark.org/security/wnpa-sec-2014-01.html
- https://www.wireshark.org/security/wnpa-sec-2014-02.html
- https://www.wireshark.org/security/wnpa-sec-2014-03.html
- https://www.wireshark.org/security/wnpa-sec-2014-04.html
- http://www.wireshark.org/docs/relnotes/wireshark-1.10.6.html
- http://www.wireshark.org/news/20140307.html
- https://bugs.mageia.org/show_bug.cgi?id=12962
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2281
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2282
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2283
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2299
SRPMS
4/core
- wireshark-1.10.6-1.mga4