Wireshark is a program for monitoring network traffic.
Several flaws were found in Wireshark’s HTTP, WBXML, LDAP, and XOT protocol
dissectors. Wireshark could crash or stop responding if it read a malformed
packet off the network. (CVE-2006-4805, CVE-2006-5468, CVE-2006-5469,
CVE-2006-5740)
A single NULL byte heap based buffer overflow was found in Wireshark’s MIME
Multipart dissector. Wireshark could crash or possibly execute arbitrary
arbitrary code as the user running Wireshark. (CVE-2006-4574)
Users of Wireshark should upgrade to these updated packages containing
Wireshark version 0.99.4, which is not vulnerable to these issues.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
RedHat | any | s390 | wireshark | < 0.99.4-EL3.1 | wireshark-0.99.4-EL3.1.s390.rpm |
RedHat | any | ia64 | wireshark | < 0.99.4-EL3.1 | wireshark-0.99.4-EL3.1.ia64.rpm |
RedHat | any | ia64 | wireshark | < 0.99.4-AS21.1 | wireshark-0.99.4-AS21.1.ia64.rpm |
RedHat | any | i386 | wireshark | < 0.99.4-EL4.1 | wireshark-0.99.4-EL4.1.i386.rpm |
RedHat | any | ppc | wireshark | < 0.99.4-EL3.1 | wireshark-0.99.4-EL3.1.ppc.rpm |
RedHat | any | s390 | wireshark | < 0.99.4-EL4.1 | wireshark-0.99.4-EL4.1.s390.rpm |
RedHat | any | s390x | wireshark-gnome | < 0.99.4-EL4.1 | wireshark-gnome-0.99.4-EL4.1.s390x.rpm |
RedHat | any | s390x | wireshark-gnome | < 0.99.4-EL3.1 | wireshark-gnome-0.99.4-EL3.1.s390x.rpm |
RedHat | any | i386 | wireshark-gnome | < 0.99.4-AS21.1 | wireshark-gnome-0.99.4-AS21.1.i386.rpm |
RedHat | any | x86_64 | wireshark-gnome | < 0.99.4-EL3.1 | wireshark-gnome-0.99.4-EL3.1.x86_64.rpm |