Updated wireshark packages fix security vulnerabilities
Publication date: 13 May 2015Modification date: 13 May 2015
Type: security
Affected Mageia releases : 4
CVE: CVE-2015-3811 , CVE-2015-3812 , CVE-2015-3814
Description
Updated wireshark packages fix security vulnerabilities: The WCP dissector could crash while decompressing data (CVE-2015-3811). The X11 dissector could leak memory (CVE-2015-3812). The IEEE 802.11 dissector could go into an infinite loop (CVE-2015-3814).
References
- https://bugs.mageia.org/show_bug.cgi?id=15924
- https://www.wireshark.org/security/wnpa-sec-2015-14.html
- https://www.wireshark.org/security/wnpa-sec-2015-15.html
- https://www.wireshark.org/security/wnpa-sec-2015-17.html
- https://www.wireshark.org/docs/relnotes/wireshark-1.10.14.html
- https://www.wireshark.org/news/20150512.html
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3811
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3812
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3814
SRPMS
4/core
- wireshark-1.10.14-1.mga4