Lucene search
AmazonALAS-2014-330HistoryApr 25, 2014 - 3:57 p.m.
Medium: wireshark
2014-04-2515:57:00
alas.aws.amazon.com
20
0.953 High
EPSS
Percentile
99.3%
Issue Overview:
Two flaws were found in Wireshark. If Wireshark read a malformed packet off a network or opened a malicious dump file, it could crash or, possibly, execute arbitrary code as the user running Wireshark. (CVE-2014-2281, CVE-2014-2299)
Several denial of service flaws were found in Wireshark. Wireshark could crash or stop responding if it read a malformed packet off a network, or opened a malicious dump file. (CVE-2013-6336, CVE-2013-6337, CVE-2013-6338, CVE-2013-6339, CVE-2013-6340, CVE-2014-2283, CVE-2013-7112, CVE-2013-7114)
Affected Packages:
wireshark
Issue Correction:
Run yum update wireshark to update your system.
New Packages:
i686:
wireshark-1.8.10-7.13.amzn1.i686
wireshark-devel-1.8.10-7.13.amzn1.i686
wireshark-debuginfo-1.8.10-7.13.amzn1.i686
src:
wireshark-1.8.10-7.13.amzn1.src
x86_64:
wireshark-1.8.10-7.13.amzn1.x86_64
wireshark-devel-1.8.10-7.13.amzn1.x86_64
wireshark-debuginfo-1.8.10-7.13.amzn1.x86_64
Additional References
Red Hat: CVE-2013-6336, CVE-2013-6337, CVE-2013-6338, CVE-2013-6339, CVE-2013-6340, CVE-2013-7112, CVE-2013-7114, CVE-2014-2281, CVE-2014-2283, CVE-2014-2299
Mitre: CVE-2013-6336, CVE-2013-6337, CVE-2013-6338, CVE-2013-6339, CVE-2013-6340, CVE-2013-7112, CVE-2013-7114, CVE-2014-2281, CVE-2014-2283, CVE-2014-2299
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Amazon Linux | 1 | i686 | wireshark | < 1.8.10-7.13.amzn1 | wireshark-1.8.10-7.13.amzn1.i686.rpm |
| Amazon Linux | 1 | i686 | wireshark-devel | < 1.8.10-7.13.amzn1 | wireshark-devel-1.8.10-7.13.amzn1.i686.rpm |
| Amazon Linux | 1 | i686 | wireshark-debuginfo | < 1.8.10-7.13.amzn1 | wireshark-debuginfo-1.8.10-7.13.amzn1.i686.rpm |
| Amazon Linux | 1 | x86_64 | wireshark | < 1.8.10-7.13.amzn1 | wireshark-1.8.10-7.13.amzn1.x86_64.rpm |
| Amazon Linux | 1 | x86_64 | wireshark-devel | < 1.8.10-7.13.amzn1 | wireshark-devel-1.8.10-7.13.amzn1.x86_64.rpm |
| Amazon Linux | 1 | x86_64 | wireshark-debuginfo | < 1.8.10-7.13.amzn1 | wireshark-debuginfo-1.8.10-7.13.amzn1.x86_64.rpm |
Related
veracode
veracode
Denial Of Service (DoS)
2019-05-02 05:02:02
Denial Of Service (DoS)
2019-05-16 01:23:07
Denial Of Service (DoS)
2019-05-02 05:02:03
oraclelinux
oraclelinux
wireshark security update
2014-03-31 00:00:00
wireshark security update
2014-03-31 00:00:00
openvas
openvas
RedHat Update for wireshark RHSA-2014:0342-01
2014-04-03 00:00:00
Oracle: Security Advisory (ELSA-2014-0342)
2015-10-06 00:00:00
CentOS Update for wireshark CESA-2014:0342 centos6
2014-04-03 00:00:00
nessus
nessus
Oracle Linux 6 : wireshark (ELSA-2014-0342)
2014-04-01 00:00:00
Amazon Linux AMI : wireshark (ALAS-2014-330)
2014-10-12 00:00:00
Scientific Linux Security Update : wireshark on SL6.x i386/x86_64 (20140331)
2014-04-01 00:00:00
redhat
redhat
(RHSA-2014:0342) Moderate: wireshark security update
2014-03-31 00:00:00
(RHSA-2014:0341) Moderate: wireshark security update
2014-03-31 00:00:00
centos
centos
wireshark security update
2014-03-31 18:13:23
wireshark security update
2014-03-31 17:51:37
fedora
fedora
[SECURITY] Fedora 19 Update: wireshark-1.10.3-3.fc19
2013-11-11 02:28:41
[SECURITY] Fedora 19 Update: wireshark-1.10.3-2.fc19
2013-11-08 04:35:34
[SECURITY] Fedora 20 Update: wireshark-1.10.3-3.fc20
2013-11-13 02:12:46
mageia
mageia
Updated wireshark packages fix multiple vulnerabilities
2013-11-22 23:09:07
Updated wireshark packages fix multiple vulnerabilies
2014-03-09 01:43:28
Updated wireshark packages fix multiple vulnerabilies
2014-03-09 01:44:35
debian
debian
[SECURITY] [DSA 2792-1] wireshark security update
2013-11-04 17:50:36
[SECURITY] [DSA 2792-1] wireshark security update
2013-11-04 17:50:53
[SECURITY] [DSA 2871-1] wireshark security update
2014-03-10 14:55:52
securityvulns
securityvulns
[SECURITY] [DSA 2792-1] wireshark security update
2013-11-18 00:00:00
[ MDVSA-2014:050 ] wireshark
2014-03-13 00:00:00
Wireshark multiple security vulnerabilities
2014-03-13 00:00:00
osv
osv
wireshark - several
2014-03-10 00:00:00
wireshark - several
2013-11-04 00:00:00
wireshark - security update
2016-05-31 00:00:00
gentoo
gentoo
Wireshark: Multiple vulnerabilities
2013-12-16 00:00:00
Wireshark: Multiple vulnerabilities
2014-06-29 00:00:00
ubuntucve
ubuntucve
cve
cve
debiancve
debiancve
prion
prion
Design/Logic Flaw
2013-11-04 16:55:00
Buffer overflow
2013-12-19 22:55:00
Design/Logic Flaw
2013-12-19 22:55:00
packetstorm
packetstorm
Wireshark 1.8.12/1.10.5 wiretap/mpeg.c Stack Buffer Overflow
2014-04-25 00:00:00
seebug
seebug
Wireshark NFS Dissector拒绝服务漏洞
2014-03-21 00:00:00
Wireshark <= 1.8.12/1.10.5 wiretap/mpeg.c Stack Buffer Overflow
2014-07-01 00:00:00
Wireshark MPEG File Parser 'wiretap/mpeg.c'缓冲区溢出漏洞
2014-03-21 00:00:00
kaspersky
kaspersky
KLA10588 Multiple vulnerabilities in Wireshark
2014-03-07 00:00:00
checkpoint_advisories
checkpoint_advisories
Wireshark MPEG File Parser Stack Buffer Overflow (CVE-2014-2299)
2014-06-02 00:00:00
zdt
zdt
Wireshark 1.8.12/1.10.5 wiretap/mpeg.c Stack Buffer Overflow
2014-04-26 00:00:00
exploitdb
exploitdb
Wireshark 1.8.12/1.10.5 - wiretap/mpeg.c Stack Buffer Overflow (Metasploit)
2014-04-28 00:00:00