Advisories » MGASA-2015-0403

Updated wireshark packages fix security vulnerabilities

Publication date: 15 Oct 2015
Modification date: 15 Oct 2015
Type: security
Affected Mageia releases : 5
CVE: CVE-2015-7830

Description

Updated wireshark packages fix security vulnerabilities:

In Wireshark before 1.12.8, the pcapng file parser could crash while copying
an interface filter. It may be possible to make Wireshark crash by injecting a
malformed packet onto the wire or by convincing someone to read a malformed
packet trace file (CVE-2015-7830).
                

References

• https://bugs.mageia.org/show_bug.cgi?id=16967
• https://www.wireshark.org/security/wnpa-sec-2015-30.html
• https://www.wireshark.org/docs/relnotes/wireshark-1.12.8.html
• https://www.wireshark.org/news/20151014.html
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7830

SRPMS

5/core

• wireshark-1.12.8-1.mga5