New Search

RHSA-2009:0313 -- wireshark security update (Moderate)

oval:org.mitre.oval:def:29088

Updated wireshark packages that fix several security issues are now available for Red Hat Enterprise Linux 3 4 and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Wireshark is a program for monitoring network traffic. Wireshark was previously known as Ethereal. Multiple buffer overflow flaws were found in Wireshark. If Wireshark read a malformed packet off a network or opened a malformed dump file it could crash or possibly execute arbitrary code as the user running Wireshark. (CVE-2008-4683 CVE-2009-0599)

Family:
unix
Status:
ACCEPTED
Platform(s):
  • CentOS Linux 3
  • Red Hat Enterprise Linux 5
  • Red Hat Enterprise Linux 3
  • Red Hat Enterprise Linux 4
Class:
patch
Reference(s):
  • RHSA-2009:0313
  • CESA-2009:0313-CentOS 3
  • CVE-2008-4680
  • CVE-2008-4681
  • CVE-2008-4682
  • CVE-2008-4683
  • CVE-2008-4684
  • CVE-2008-4685
  • CVE-2008-5285
  • CVE-2008-6472
  • CVE-2009-0599
  • CVE-2009-0600
Product(s):
  • wireshark