English | Deutsch | Español | Português
 UserID:
 Passwd:
 new user
 About:   Dedicated  | Advanced  | Standard  | Recurring  | No Risk  | Desktop  | Basic  | Single  | Security Seal  | FAQ
  Price/Feature Summary  | Order  | New Vulnerabilities  | Confidentiality  | Vulnerability Search
 Vulnerability   
Search   		     Search 61204 CVE descriptions
and 32582 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.71217
Category:Red Hat Local Security Checks
Title:RedHat Security Advisory RHSA-2012:0509
Summary:Redhat Security Advisory RHSA-2012:0509
Description:The remote host is missing updates announced in
advisory RHSA-2012:0509.

Wireshark is a program for monitoring network traffic. Wireshark was
previously known as Ethereal.

Several flaws were found in Wireshark. If Wireshark read a malformed packet
off a network or opened a malicious dump file, it could crash or, possibly,
execute arbitrary code as the user running Wireshark. (CVE-2011-1590,
CVE-2011-4102, CVE-2012-1595)

Several denial of service flaws were found in Wireshark. Wireshark could
crash or stop responding if it read a malformed packet off a network, or
opened a malicious dump file. (CVE-2011-1143, CVE-2011-1957, CVE-2011-1958,
CVE-2011-1959, CVE-2011-2174, CVE-2011-2175, CVE-2011-2597, CVE-2011-2698,
CVE-2012-0041, CVE-2012-0042, CVE-2012-0067, CVE-2012-0066)

Users of Wireshark should upgrade to these updated packages, which contain
backported patches to correct these issues. All running instances of
Wireshark must be restarted for the update to take effect.

Solution:
Please note that this update is available via
Red Hat Network. To use Red Hat Network, launch the Red
Hat Update Agent with the following command: up2date

http://rhn.redhat.com/errata/RHSA-2012-0509.html

Risk factor : Medium
Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2011-1143
http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055664.html
http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055650.html
http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055364.html
http://www.redhat.com/support/errata/RHSA-2011-0370.html
SuSE Security Announcement: openSUSE-SU-2011:0347 (Google Search)
https://hermes.opensuse.org/messages/8086844
CERT/CC vulnerability note: VU#215900
http://www.kb.cert.org/vuls/id/215900
BugTraq ID: 46796
http://www.securityfocus.com/bid/46796
http://www.securitytracker.com/id?1025148
http://secunia.com/advisories/43821
http://secunia.com/advisories/44169
http://secunia.com/advisories/43759
http://secunia.com/advisories/48947
http://www.vupen.com/english/advisories/2011/0719
http://www.vupen.com/english/advisories/2011/0626
Common Vulnerability Exposure (CVE) ID: CVE-2011-1590
http://openwall.com/lists/oss-security/2011/04/18/8
http://openwall.com/lists/oss-security/2011/04/18/2
Debian Security Information: DSA-2274 (Google Search)
http://www.debian.org/security/2011/dsa-2274
http://lists.fedoraproject.org/pipermail/package-announce/2011-April/058993.html
http://lists.fedoraproject.org/pipermail/package-announce/2011-April/058983.html
http://lists.fedoraproject.org/pipermail/package-announce/2011-April/058900.html
http://www.mandriva.com/security/advisories?name=MDVSA-2011:083
SuSE Security Announcement: SUSE-SU-2011:0611 (Google Search)
https://hermes.opensuse.org/messages/8701428
http://www.osvdb.org/71846
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:15050
http://securitytracker.com/id?1025388
http://secunia.com/advisories/44172
http://secunia.com/advisories/44374
http://secunia.com/advisories/45149
http://secunia.com/advisories/44822
http://www.vupen.com/english/advisories/2011/1022
http://www.vupen.com/english/advisories/2011/1106
Common Vulnerability Exposure (CVE) ID: CVE-2011-1957
http://openwall.com/lists/oss-security/2011/05/31/20
http://openwall.com/lists/oss-security/2011/06/01/1
http://openwall.com/lists/oss-security/2011/06/01/11
http://lists.fedoraproject.org/pipermail/package-announce/2011-June/061290.html
http://lists.fedoraproject.org/pipermail/package-announce/2011-June/061437.html
http://lists.fedoraproject.org/pipermail/package-announce/2011-June/061477.html
BugTraq ID: 48066
http://www.securityfocus.com/bid/48066
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:14325
http://secunia.com/advisories/44449
http://secunia.com/advisories/44958
XForce ISS Database: wireshark-dicom-dos(67790)
http://xforce.iss.net/xforce/xfdb/67790
Common Vulnerability Exposure (CVE) ID: CVE-2011-1958
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:15045
XForce ISS Database: wireshark-diameter-dos(67791)
http://xforce.iss.net/xforce/xfdb/67791
Common Vulnerability Exposure (CVE) ID: CVE-2011-1959
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:14656
XForce ISS Database: wireshark-snoop-dos(67792)
http://xforce.iss.net/xforce/xfdb/67792
Common Vulnerability Exposure (CVE) ID: CVE-2011-2174
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:14777
XForce ISS Database: wireshark-compressed-packet-dos(67793)
http://xforce.iss.net/xforce/xfdb/67793
Common Vulnerability Exposure (CVE) ID: CVE-2011-2175
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:14645
Common Vulnerability Exposure (CVE) ID: CVE-2011-2597
http://lists.fedoraproject.org/pipermail/package-announce/2011-August/063586.html
http://lists.fedoraproject.org/pipermail/package-announce/2011-August/063591.html
http://www.mandriva.com/security/advisories?name=MDVSA-2011:118
SuSE Security Announcement: SUSE-SU-2011:1262 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00021.html
SuSE Security Announcement: openSUSE-SU-2011:1263 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00022.html
BugTraq ID: 48506
http://www.securityfocus.com/bid/48506
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:14794
http://securitytracker.com/id?1025738
http://secunia.com/advisories/45086
http://secunia.com/advisories/45574
XForce ISS Database: wireshark-lucent-dos(68335)
http://xforce.iss.net/xforce/xfdb/68335
Common Vulnerability Exposure (CVE) ID: CVE-2011-2698
http://www.openwall.com/lists/oss-security/2011/07/19/5
http://www.openwall.com/lists/oss-security/2011/07/20/2
BugTraq ID: 49071
http://www.securityfocus.com/bid/49071
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:14610
XForce ISS Database: wireshark-ansiamap-dos(69074)
http://xforce.iss.net/xforce/xfdb/69074
Common Vulnerability Exposure (CVE) ID: CVE-2011-4102
http://openwall.com/lists/oss-security/2011/11/01/9
BugTraq ID: 50486
http://www.securityfocus.com/bid/50486
http://osvdb.org/76770
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:15073
http://secunia.com/advisories/46644
http://secunia.com/advisories/46913
XForce ISS Database: wireshark-erf-bo(71092)
http://xforce.iss.net/xforce/xfdb/71092
Common Vulnerability Exposure (CVE) ID: CVE-2012-0041
http://www.openwall.com/lists/oss-security/2012/01/11/7
http://www.openwall.com/lists/oss-security/2012/01/20/4
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:15297
Common Vulnerability Exposure (CVE) ID: CVE-2012-0042
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:15368
Common Vulnerability Exposure (CVE) ID: CVE-2012-0066
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:15111
Common Vulnerability Exposure (CVE) ID: CVE-2012-0067
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:15192
Common Vulnerability Exposure (CVE) ID: CVE-2012-1595
http://www.openwall.com/lists/oss-security/2012/03/28/13
SuSE Security Announcement: openSUSE-SU-2012:0558 (Google Search)
http://lists.opensuse.org/opensuse-updates/2012-04/msg00060.html
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:15548
http://secunia.com/advisories/48986
CopyrightCopyright (c) 2012 E-Soft Inc. http://www.securityspace.com

This is only one of 32582 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.

New User Registration
Email:
UserID:
Passwd:
Please email me your monthly newsletters, informing the latest services, improvements & surveys.
Please email me a vulnerability test announcement whenever a new test is added.
   Privacy
Registered User Login
 
UserID:   
Passwd:  
 Forgot userid or passwd?
Email/Userid:



Home | About Us | Contact Us | Partner Programs | Privacy | Mailing Lists | Abuse
Security Audits | Managed DNS | Network Monitoring | Site Analyzer | Internet Research Reports
Web Probe | Whois

© 1998-2013 E-Soft Inc. All rights reserved.