Oval Definition:oval:com.redhat.rhsa:def:20080059
Revision Date:2008-01-28Version:636
Title:RHSA-2008:0059: wireshark security update (Moderate)
Description:Wireshark is a program for monitoring network traffic. Wireshark was previously known as Ethereal.

  • Several flaws were found in Wireshark. Wireshark could crash or possibly execute arbitrary code as the user running Wireshark if it read a malformed packet off the network. (CVE-2007-6114, CVE-2007-6115, CVE-2007-6117)

  • Several denial of service bugs were found in Wireshark. Wireshark could crash or stop responding if it read a malformed packet off the network. (CVE-2007-3389, CVE-2007-3390, CVE-2007-3391, CVE-2007-3392, CVE-2007-3392, CVE-2007-3393, CVE-2007-6113, CVE-2007-6118, CVE-2007-6120, CVE-2007-6121, CVE-2007-6450, CVE-2007-6451)

    As well, Wireshark switched from using net-snmp to libsmi, which is included in this errata.

    Users of wireshark should upgrade to these updated packages, which contain Wireshark version 0.99.7, and resolve these issues.
    • Family:unixClass:patch
    Status:Reference(s):CVE-2007-3389
    CVE-2007-3390
    CVE-2007-3391
    CVE-2007-3392
    CVE-2007-3393
    CVE-2007-6113
    CVE-2007-6114
    CVE-2007-6115
    CVE-2007-6117
    CVE-2007-6118
    CVE-2007-6120
    CVE-2007-6121
    CVE-2007-6450
    CVE-2007-6451
    RHSA-2008:0059
    RHSA-2008:0059-01
    RHSA-2008:0059-01
    Platform(s):Red Hat Enterprise Linux 3
    		Product(s):
    Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 3 is installed
  • AND
  • libsmi is earlier than 0:0.4.5-3.el3
  • AND libsmi is signed with Red Hat master key
  • libsmi-devel is earlier than 0:0.4.5-3.el3
  • AND libsmi-devel is signed with Red Hat master key
  • wireshark-gnome is earlier than 0:0.99.7-EL3.1
  • AND wireshark-gnome is signed with Red Hat master key
  • wireshark is earlier than 0:0.99.7-EL3.1
  • AND wireshark is signed with Red Hat master key
    • BACK