First published: Mon Apr 23 2012(Updated: )
Wireshark is a program for monitoring network traffic. Wireshark was<br>previously known as Ethereal.<br>Several flaws were found in Wireshark. If Wireshark read a malformed packet<br>off a network or opened a malicious dump file, it could crash or, possibly,<br>execute arbitrary code as the user running Wireshark. (CVE-2011-1590,<br>CVE-2011-4102, CVE-2012-1595)<br>Several denial of service flaws were found in Wireshark. Wireshark could<br>crash or stop responding if it read a malformed packet off a network, or<br>opened a malicious dump file. (CVE-2011-1143, CVE-2011-1957, CVE-2011-1958,<br>CVE-2011-1959, CVE-2011-2174, CVE-2011-2175, CVE-2011-2597, CVE-2011-2698,<br>CVE-2012-0041, CVE-2012-0042, CVE-2012-0067, CVE-2012-0066)<br>Users of Wireshark should upgrade to these updated packages, which contain<br>backported patches to correct these issues. All running instances of<br>Wireshark must be restarted for the update to take effect.<br>
Affected Software | Affected Version | How to fix |
---|---|---|
redhat/wireshark | <1.2.15-2.el6_2.1 | 1.2.15-2.el6_2.1 |
redhat/wireshark | <1.2.15-2.el6_2.1 | 1.2.15-2.el6_2.1 |
redhat/wireshark-debuginfo | <1.2.15-2.el6_2.1 | 1.2.15-2.el6_2.1 |
redhat/wireshark-debuginfo | <1.2.15-2.el6_2.1 | 1.2.15-2.el6_2.1 |
redhat/wireshark-devel | <1.2.15-2.el6_2.1 | 1.2.15-2.el6_2.1 |
redhat/wireshark-devel | <1.2.15-2.el6_2.1 | 1.2.15-2.el6_2.1 |
redhat/wireshark-gnome | <1.2.15-2.el6_2.1 | 1.2.15-2.el6_2.1 |
redhat/wireshark-gnome | <1.2.15-2.el6_2.1 | 1.2.15-2.el6_2.1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.