Advisories ยป MGASA-2014-0386

Updated wireshark packages fix security vulnerabilities

Publication date: 24 Sep 2014
Type: security
Affected Mageia releases : 3 , 4
CVE: CVE-2014-6421 , CVE-2014-6422 , CVE-2014-6423 , CVE-2014-6424 , CVE-2014-6427 , CVE-2014-6428 , CVE-2014-6429 , CVE-2014-6430 , CVE-2014-6431 , CVE-2014-6432

Description

Updated wireshark packages fix security vulnerabilities:

RTP dissector crash (CVE-2014-6421, CVE-2014-6422).

MEGACO dissector infinite loop (CVE-2014-6423).

Netflow dissector crash (CVE-2014-6424).

RTSP dissector crash (CVE-2014-6427).

SES dissector crash (CVE-2014-6428).

Sniffer file parser crash (CVE-2014-6429, CVE-2014-6430, CVE-2014-6431,
CVE-2014-6432).
                

References

SRPMS

3/core

4/core