Test ID:	1.3.6.1.4.1.25623.1.0.70121
Category:	Fedora Local Security Checks
Title:	Fedora Core 15 FEDORA-2011-9638 (wireshark)
Summary:	NOSUMMARY
Description:	Description: The remote host is missing an update to wireshark announced via advisory FEDORA-2011-9638. Update Information: Wireshark 1.4.8 fixes the following vulnerabilities: The Lucent/Ascend file parser was susceptible to an infinite loop. CVE-2011-2597. The ANSI MAP dissector was susceptible to an infinite loop. CVE-2011-2698. References: [ 1 ] Bug #719753 - CVE-2011-2597 wireshark: infinite loop DoS in lucent/ascend file parser https://bugzilla.redhat.com/show_bug.cgi?id=719753 [ 2 ] Bug #723215 - CVE-2011-2698 wireshark: Infinite loop in the ANSI A Interface (IS-634/IOS) dissector https://bugzilla.redhat.com/show_bug.cgi?id=723215 Solution: Apply the appropriate updates. This update can be installed with the yum update program. Use su -c 'yum update wireshark' at the command line. For more information, refer to Managing Software with yum, available at http://docs.fedoraproject.org/yum/. http://www.securityspace.com/smysecure/catid.html?in=FEDORA-2011-9638 Risk factor : Medium CVSS Score: 4.3
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2011-2597 BugTraq ID: 48506 http://www.securityfocus.com/bid/48506 http://lists.fedoraproject.org/pipermail/package-announce/2011-August/063586.html http://lists.fedoraproject.org/pipermail/package-announce/2011-August/063591.html http://www.mandriva.com/security/advisories?name=MDVSA-2011:118 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14794 http://securitytracker.com/id?1025738 http://secunia.com/advisories/45086 http://secunia.com/advisories/45574 http://secunia.com/advisories/48947 SuSE Security Announcement: SUSE-SU-2011:1262 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00021.html SuSE Security Announcement: openSUSE-SU-2011:1263 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00022.html XForce ISS Database: wireshark-lucent-dos(68335) https://exchange.xforce.ibmcloud.com/vulnerabilities/68335 Common Vulnerability Exposure (CVE) ID: CVE-2011-2698 45086 45574 48947 49071 http://www.securityfocus.com/bid/49071 FEDORA-2011-9638 FEDORA-2011-9640 RHSA-2013:0125 http://rhn.redhat.com/errata/RHSA-2013-0125.html [oss-security] 20110719 CVE Request -- Wireshark: Infinite loop in the ANSI A Interface (IS-634/IOS) dissector http://www.openwall.com/lists/oss-security/2011/07/19/5 [oss-security] 20110720 Re: CVE Request -- Wireshark: Infinite loop in the ANSI A Interface (IS-634/IOS) dissector http://www.openwall.com/lists/oss-security/2011/07/20/2 http://anonsvn.wireshark.org/viewvc?view=revision&revision=37930 http://www.wireshark.org/security/wnpa-sec-2011-10.html http://www.wireshark.org/security/wnpa-sec-2011-11.html https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=6044 https://bugzilla.redhat.com/show_bug.cgi?id=723215 oval:org.mitre.oval:def:14610 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14610 wireshark-ansiamap-dos(69074) https://exchange.xforce.ibmcloud.com/vulnerabilities/69074
Copyright	Copyright (c) 2011 E-Soft Inc. http://www.securityspace.com

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.