Ethereal is a program for monitoring network traffic.
Two denial of service bugs were found in Ethereal’s IRC and GTP protocol
dissectors. Ethereal could crash or stop responding if it reads a malformed
IRC or GTP packet off the network. The Common Vulnerabilities and Exposures
project (cve.mitre.org) assigned the names CVE-2005-3313 and CVE-2005-4585
to these issues.
A buffer overflow bug was found in Ethereal’s OSPF protocol dissector.
Ethereal could crash or execute arbitrary code if it reads a malformed OSPF
packet off the network. (CVE-2005-3651)
Users of ethereal should upgrade to these updated packages containing
version 0.10.14, which is not vulnerable to these issues.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
RedHat | any | ppc | ethereal-gnome | < 0.10.14-1.EL3.1 | ethereal-gnome-0.10.14-1.EL3.1.ppc.rpm |
RedHat | any | s390 | ethereal-gnome | < 0.10.14-1.EL4.1 | ethereal-gnome-0.10.14-1.EL4.1.s390.rpm |
RedHat | any | x86_64 | ethereal-gnome | < 0.10.14-1.EL3.1 | ethereal-gnome-0.10.14-1.EL3.1.x86_64.rpm |
RedHat | any | i386 | ethereal | < 0.10.14-1.EL4.1 | ethereal-0.10.14-1.EL4.1.i386.rpm |
RedHat | any | ia64 | ethereal-gnome | < 0.10.14-1.AS21.1 | ethereal-gnome-0.10.14-1.AS21.1.ia64.rpm |
RedHat | any | ia64 | ethereal-gnome | < 0.10.14-1.EL3.1 | ethereal-gnome-0.10.14-1.EL3.1.ia64.rpm |
RedHat | any | s390 | ethereal | < 0.10.14-1.EL4.1 | ethereal-0.10.14-1.EL4.1.s390.rpm |
RedHat | any | ppc | ethereal-gnome | < 0.10.14-1.EL4.1 | ethereal-gnome-0.10.14-1.EL4.1.ppc.rpm |
RedHat | any | s390 | ethereal-gnome | < 0.10.14-1.EL3.1 | ethereal-gnome-0.10.14-1.EL3.1.s390.rpm |
RedHat | any | x86_64 | ethereal | < 0.10.14-1.EL4.1 | ethereal-0.10.14-1.EL4.1.x86_64.rpm |