Security
Security
Multiple Denial of Service vulnerabilities have been discovered in Wireshark.
| Package | net-analyzer/wireshark on all architectures |
|---|---|
| Affected versions | < 0.99.8 |
| Unaffected versions | >= 0.99.8 |
Wireshark is a network protocol analyzer with a graphical front-end.
Multiple unspecified errors exist in the SCTP, SNMP, and TFTP dissectors.
A remote attacker could cause a Denial of Service by sending a malformed packet.
Disable the SCTP, SNMP, and TFTP dissectors.
All Wireshark users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot --verbose ">=net-analyzer/wireshark-0.99.8"
Release date
March 24, 2008
Latest revision
March 24, 2008: 01
Severity
normal
Exploitable
remote
Bugzilla entries