Contact | Site en Français               

 


 

Vulnerabilities & Threats
 
  VUPEN Security Advisories
  Linux Security Advisories

  Malware Advisories
  Zero-Day Monitor
  Search Engine
 
   

>> Mandriva Security Update Fixes Wireshark Remote Denial of Service Vulnerabilities

Title : Mandriva Security Update Fixes Wireshark Remote Denial of Service Vulnerabilities
Advisory ID : VUPEN/ADV-2007-2486
CVE ID : CVE-2007-3389 - CVE-2007-3390 - CVE-2007-3391 - CVE-2007-3392 - CVE-2007-3393
Rated as : Moderate Risk 
Remotely Exploitable : Yes
Locally Exploitable : Yes
Release Date : 2007-07-11

Advisory Details
 
  Description
  Affected Products
  Solution
  References
Technical Description    Receive VUPEN Security alerts in a Text format  Receive VUPEN Security alerts in a PDF format  Receive VUPEN Security alerts in an XML format  Receive VUPEN Security notifications by SMS 

Multiple vulnerabilities have been identified in Mandriva, which could be exploited by remote attackers to cause a denial of service [...]

Solution

Upgrade the affected packages :

Mandriva Linux 2007.0:
b033f6eadc258c248d9fba4469b838e1 2007.0/i586/libwireshark0-0.99.6-0.1mdv2007.0.i586.rpm
5aad6a1e489f750ddf174649a6319ca2 2007.0/i586/tshark-0.99.6-0.1mdv2007.0.i586.rpm
c394ef661021c5e62bed70c21c315ffd 2007.0/i586/wireshark-0.99.6-0.1mdv2007.0.i586.rpm
e851b58c639407a7c9ae25fcfd336774 2007.0/i586/wireshark-tools-0.99.6-0.1mdv2007.0.i586.rpm
72beadc31f718f860324544019d3adc3 2007.0/SRPMS/wireshark-0.99.6-0.1mdv2007.0.src.rpm

Mandriva Linux 2007.0/X86_64:
dd9d7af8d82a2eacc871e6a919cad3af 2007.0/x86_64/lib64wireshark0-0.99.6-0.1mdv2007.0.x86_64.rpm
452de6307f10772c68ebae473ae3c537 2007.0/x86_64/tshark-0.99.6-0.1mdv2007.0.x86_64.rpm
fa4cc3d56186068a13549dc754529198 2007.0/x86_64/wireshark-0.99.6-0.1mdv2007.0.x86_64.rpm
74dab97371727e367e997a1a90f7263b 2007.0/x86_64/wireshark-tools-0.99.6-0.1mdv2007.0.x86_64.rpm
72beadc31f718f860324544019d3adc3 2007.0/SRPMS/wireshark-0.99.6-0.1mdv2007.0.src.rpm

Mandriva Linux 2007.1:
a5b8f29cdc32543659a8e0c23f146e33 2007.1/i586/libwireshark0-0.99.6-0mdv2007.1.i586.rpm
ceb71b951f1185741c9b9be50fda7acc 2007.1/i586/tshark-0.99.6-0mdv2007.1.i586.rpm
188ee566b140d3a5a270106fdba86516 2007.1/i586/wireshark-0.99.6-0mdv2007.1.i586.rpm
4a4e07651e01dd9177548b37b7888971 2007.1/i586/wireshark-tools-0.99.6-0mdv2007.1.i586.rpm
9ab979db8a493c6d35ee621667af6806 2007.1/SRPMS/wireshark-0.99.6-0mdv2007.1.src.rpm

Mandriva Linux 2007.1/X86_64:
83ca8b3c25af33fd0f53ac2bff0adc21 2007.1/x86_64/lib64wireshark0-0.99.6-0mdv2007.1.x86_64.rpm
4f8159feba8f9cd498d9d6e810a0e555 2007.1/x86_64/tshark-0.99.6-0mdv2007.1.x86_64.rpm
6cf73daa791ecbcacb505016e0050823 2007.1/x86_64/wireshark-0.99.6-0mdv2007.1.x86_64.rpm
fa1e1783c619d908a5d0b260adbb5c9f 2007.1/x86_64/wireshark-tools-0.99.6-0mdv2007.1.x86_64.rpm
9ab979db8a493c6d35ee621667af6806 2007.1/SRPMS/wireshark-0.99.6-0mdv2007.1.src.rpm

Corporate 4.0:
e0bd9a03651d4f29034088368b81aab8 corporate/4.0/i586/libwireshark0-0.99.6-0.1.20060mlcs4.i586.rpm
1bbb1205a0f0a2d0107f1a6992ceae83 corporate/4.0/i586/tshark-0.99.6-0.1.20060mlcs4.i586.rpm
88828ce0dc609d86ff1987464813fa02 corporate/4.0/i586/wireshark-0.99.6-0.1.20060mlcs4.i586.rpm
b1180bb4471aabf35620e391475f81ff corporate/4.0/i586/wireshark-tools-0.99.6-0.1.20060mlcs4.i586.rpm
b72cf2010d3c7afd8f00e99ed6d28430 corporate/4.0/SRPMS/wireshark-0.99.6-0.1.20060mlcs4.src.rpm

Corporate 4.0/X86_64:
794ca2e7faf95f0c6f6527523bbd56cb corporate/4.0/x86_64/lib64wireshark0-0.99.6-0.1.20060mlcs4.x86_64.rpm
4673373f4d25fafb8da9b306c7afc0c6 corporate/4.0/x86_64/tshark-0.99.6-0.1.20060mlcs4.x86_64.rpm
8a1d126e0524d69fb719c9374f45d64d corporate/4.0/x86_64/wireshark-0.99.6-0.1.20060mlcs4.x86_64.rpm
5d86ebcdf606a1c8406ddb6a086c09e6 corporate/4.0/x86_64/wireshark-tools-0.99.6-0.1.20060mlcs4.x86_64.rpm
b72cf2010d3c7afd8f00e99ed6d28430 corporate/4.0/SRPMS/wireshark-0.99.6-0.1.20060mlcs4.src.rpm

ChangeLog

2007-07-11 : Initial release

Vulnerability Management

Subscribe to VUPEN Security VNS and receive real-time e-mail and SMS alerts when new vulnerabilities, exploits, or patches relevant to your systems and network configurations are available.

Feedback

If you have additional information or corrections for this security advisory please submit them via our contact form or by email to updates@vupen.com.
 


Copyright 2003-2008 © VUPEN.COM - Privacy Policy