GLSA: ethereal (200311-04)

From: Andrea Barisani (lcars_at_gentoo.org)
Date: 11/24/03

  • Next message: Andrea Barisani: "GLSA: libnids (200311-07)" 
    Date: Mon, 24 Nov 2003 18:04:25 +0000
To: bugtraq@securityfocus.com

    -----BEGIN PGP SIGNED MESSAGE-----
    Hash: SHA1

    - - ---------------------------------------------------------------------------
    GENTOO LINUX SECURITY ANNOUNCEMENT 200311-04
    - - ---------------------------------------------------------------------------

    GLSA: 200311-04
    package: net-analyzer/ethereal
    summary: Security problems in Ethereal 0.9.15
    severity: normal
    Gentoo bug: 32691
    date: 2003-11-22
    CVE: none
    exploit: remote
    affected: <0.9.16
    fixed: >=0.9.16

    DESCRIPTION:

    Quote from <http://www.ethereal.com/appnotes/enpa-sa-00011.html>:

      Potential security issues have been discovered in the following protocol
      dissectors:

        * An improperly formatted GTP MSISDN string could cause a buffer
          overflow.

        * A malformed ISAKMP or MEGACO packet could make Ethereal or
          Tethereal crash.

        * The SOCKS dissector was susceptible to a heap overlfow.

      Impact:

        It may be possible to make Ethereal crash or run arbitrary code
        by injecting a purposefully malformed packet onto the wire, or
        by convincing someone to read a malformed packet trace file.

      Resolution:

         Upgrade to 0.9.16.
            
         If you are running a version prior to 0.9.16 and you cannot
         upgrade, you can disable the GTP, ISAKMP, MEGACO, and SOCKS
         protocol dissectors by selecting Edit->Protocols... and
         deselecting them from the list.

    SOLUTION:

    It is recommended that all Gentoo Linux users who are running
    net-analyzer/ethereal 0.9.x upgrade:

    emerge sync
    emerge '>=net-analyzer/ethereal-0.9.16'
    emerge clean

    - --
    Andrea Barisani <lcars@gentoo.org> .*.
    Gentoo Linux Infrastructure Developer V
                                                                 ( )
    GPG-Key 0xC9EE0905 http://dev.gentoo.org/~lcars/pubkey.asc ( )
        491D E9E0 3875 0EC9 10DD 150B CAA9 2C7D C9EE 0905 ^^_^^

    -----BEGIN PGP SIGNATURE-----
    Version: GnuPG v1.2.3 (GNU/Linux)

    iD8DBQE/wi7qyqksfcnuCQURAtzrAJ9aRrV+aALW2vrSlcdgZmKshnS3kACfVz2E
    IZI8yNOWjMb81RRpK6IY+wE=
    =IPJD
    -----END PGP SIGNATURE-----

  • Next message: Andrea Barisani: "GLSA: libnids (200311-07)"

    Relevant Pages

    • GLSA: apache (200310-04)
      ... GENTOO LINUX SECURITY ANNOUNCEMENT 200310-04 ... available and encourage users of all prior versions to upgrade. ... It is recommended that all Gentoo Linux users who are running ... emerge '>=net-www/apache-2.0.48' ...
      (Bugtraq)
    • GLSA: usermin (200302-14)
      ... GENTOO LINUX SECURITY ANNOUNCEMENT 200302-14 ... "Due to a remotely exploitable security hole being discovered that ... It is recommended that all Gentoo Linux users who are running ... emerge -u usermin ...
      (Bugtraq)
    • [Full-Disclosure] GLSA: usermin (200302-14)
      ... GENTOO LINUX SECURITY ANNOUNCEMENT 200302-14 ... "Due to a remotely exploitable security hole being discovered that ... It is recommended that all Gentoo Linux users who are running ... emerge -u usermin ...
      (Full-Disclosure)
    • [Full-disclosure] [ GLSA 200606-11 ] JPEG library: Denial of Service
      ... Bugs: #130889 ... Tavis Ormandy of the Gentoo Linux Auditing Team discovered that the ... Security is a primary focus of Gentoo Linux and ensuring the ... Creative Commons - Attribution / Share Alike license. ...
      (Full-Disclosure)
    • [ GLSA 200606-11 ] JPEG library: Denial of Service
      ... Bugs: #130889 ... Tavis Ormandy of the Gentoo Linux Auditing Team discovered that the ... Security is a primary focus of Gentoo Linux and ensuring the ... Creative Commons - Attribution / Share Alike license. ...
      (Bugtraq)