[v2.2] Multiple vulnerabilities in wireshark < [1.4.15|1.6.10] allow remote denial of service
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4285
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4288
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4289
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4296
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4291
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4292
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4293
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4290
http://www.wireshark.org/security/wnpa-sec-2012-13.html
http://www.wireshark.org/security/wnpa-sec-2012-14.html
http://www.wireshark.org/security/wnpa-sec-2012-15.html
http://www.wireshark.org/security/wnpa-sec-2012-17.html
http://www.wireshark.org/security/wnpa-sec-2012-18.html
http://www.wireshark.org/security/wnpa-sec-2012-20.html
http://www.wireshark.org/security/wnpa-sec-2012-21.html
http://www.wireshark.org/security/wnpa-sec-2012-22.html
http://www.wireshark.org/security/wnpa-sec-2012-23.html
Solution:
- Upgrade to 1.4.15 for 2.1/2.2
- Upgrade to 1.6.10 for 2.3/2.4
(from redmine: issue id 1367, created on 2012-09-09, closed on 2012-10-02)
- Changesets:
- Revision 5929857a by Natanael Copa on 2012-09-28T13:10:13Z:
main/wireshark: security upgrade to 1.4.15 (CVE-2012-4285,CVE-2012-4288,CVE-2012-4289,CVE-2012-4296,CVE-2012-4291,CVE-2012-4292,CVE-2012-4293,CVE-2012-4290)
fixes #1367