Mandriva Linux Security Advisory : wireshark (MDVSA-2011:138)

This advisory updates wireshark to the latest version 1.6.2, fixing several security issues : The prototreeadditem function in Wireshark 1.6.1, when the IKEv1 protocol dissector is used, allows user-assisted remote attackers to cause a denial of service infinite loop via vectors involving a...

[ MDVSA-2011:138 ] wireshark

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2011:138 http://www.mandriva.com/security/ Package : wireshark Date : September 28, 2011 Affected: 2011. Problem Description: This advisory updates wireshark to the latest version 1.6.2, fixing several security...

CVE-2011-3484

The unxorFrame function in epan/dissectors/packet-opensafety.c in the OpenSafety dissector in Wireshark 1.6.x before 1.6.2 does not properly validate a certain frame size, which allows remote attackers to cause a denial of service loop and application crash via a malformed packet...

CVE-2011-3484

The CVE-2011-3484 issue affects the Wireshark OpenSafety dissector (epan/dissectors/packet-opensafety.c). The unxorFrame function fails to validate a certain frame size in Wireshark 1.6.x before 1.6.2, enabling remote attackers to trigger a denial of service via a malformed packet (loop and appli...