Oval Definition:oval:com.redhat.rhsa:def:20060658
Revision Date:2008-03-20Version:647
Title:RHSA-2006:0658: wireshark security update (Low)
Description:Wireshark is a program for monitoring network traffic.

  • Bugs were found in Wireshark's SCSI and SSCOP protocol dissectors. Ethereal could crash or stop responding if it read a malformed packet off the network. (CVE-2006-4330, CVE-2006-4333)

  • An off-by-one bug was found in the IPsec ESP decryption preference parser. Ethereal could crash or stop responding if it read a malformed packet off the network. (CVE-2006-4331)

    Users of Wireshark or Ethereal should upgrade to these updated packages containing Wireshark version 0.99.3, which is not vulnerable to these issues. These packages also fix a bug in the PAM configuration of the Wireshark packages which prevented non-root users starting a capture.
    • Family:unixClass:patch
    Status:Reference(s):CVE-2006-4330
    CVE-2006-4331
    CVE-2006-4333
    RHSA-2006:0658
    RHSA-2006:0658-01
    RHSA-2006:0658-01
    Platform(s):Red Hat Enterprise Linux 3
    Red Hat Enterprise Linux 4
    		Product(s):
    Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 3 is installed
  • AND
  • wireshark is earlier than 0:0.99.3-EL3.2
  • AND wireshark is signed with Red Hat master key
  • wireshark-gnome is earlier than 0:0.99.3-EL3.2
  • AND wireshark-gnome is signed with Red Hat master key
  • OR Package Information
  • Red Hat Enterprise Linux 4 is installed
  • AND
  • wireshark is earlier than 0:0.99.3-EL4.2
  • AND wireshark is signed with Red Hat master key
  • wireshark-gnome is earlier than 0:0.99.3-EL4.2
  • AND wireshark-gnome is signed with Red Hat master key
    • Definition Synopsis
  • Release Information
  • Red Hat Enterprise Linux 3 is installed
  • AND
  • wireshark is earlier than 0:0.99.3-EL3.2
  • AND wireshark is signed with Red Hat master key
  • wireshark-gnome is earlier than 0:0.99.3-EL3.2
  • AND wireshark-gnome is signed with Red Hat master key
  • OR Package Information
  • Red Hat Enterprise Linux 4 is installed
  • AND
  • wireshark is earlier than 0:0.99.3-EL4.2
  • AND wireshark is signed with Red Hat master key
  • wireshark-gnome is earlier than 0:0.99.3-EL4.2
  • AND wireshark-gnome is signed with Red Hat master key
    • Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 4 is installed
  • AND
  • wireshark is earlier than 0:0.99.3-EL4.2
  • AND wireshark is signed with Red Hat redhatrelease2 key
  • wireshark-gnome is earlier than 0:0.99.3-EL4.2
  • AND wireshark-gnome is signed with Red Hat redhatrelease2 key
    • BACK