Wireshark 1.2.10 update to fix multiple Security Vulnerabilities

Source: Internet
Author: User

Release date: 2010-08-23
Updated on: 2010-09-03

Affected Systems:
Wireshark 1.2.0-1.2.9
Wireshark 0.10.8-1.0.14
Unaffected system:
Wireshark 1.2.10
Wireshark 1.0.15
Description:
--------------------------------------------------------------------------------
Bugtraq id: 42618
CVE (CAN) ID: CVE-2010-2992, CVE-2010-2993, CVE-2010-2994, CVE-2010-2995

Wireshark, formerly known as Ethereal, is a very popular network protocol analysis tool.

Wireshark's gsm a rr and IPMI protocol parsing modules have the infinite loop and NULL pointer reference vulnerability. The SigComp Universal Decompressor Virtual Machine (UDVM) and ASN.1 BER protocol parsing modules have the buffer overflow vulnerability. These vulnerabilities can be triggered when a user is cheated to capture malicious packets from the network or opens a malicious packet capture file, resulting in DOS or arbitrary code execution.

<* Source: Buildbot Builder (buildbot@wireshark.org)

Link: http://secunia.com/advisories/40783/
Http://www.wireshark.org/security/wnpa-sec-2010-07.html
Http://www.wireshark.org/security/wnpa-sec-2010-08.html
Http://www.debian.org/security/2010/dsa-2101
*>

Suggestion:
--------------------------------------------------------------------------------
Vendor patch:

Debian
------
Debian has released a Security Bulletin (DSA-2101-1) and patches for this:
DSA-2101-1: New wireshark packages fix several vulnerabilities
Link: http://www.debian.org/security/2010/dsa-2101

Patch download:
Source archives:

Http://security.debian.org/pool/updates/main/w/wireshark/wireshark_1.0.2.orig.tar.gz
Size/MD5 checksum: 16935492 1834437f7c6dbed02082e7757133047d
Http://security.debian.org/pool/updates/main/w/wireshark/wireshark_1.0.2-3+lenny10.diff.gz
Size/MD5 checksum: 119766 5a4194b36f275740420e6976a3cf4801
Http://security.debian.org/pool/updates/main/w/wireshark/wireshark_1.0.2-3+lenny10.dsc
Size/MD5 checksum: 1506 8c8b1b6eb5746bb12f3a000006279d2a4

Alpha architecture (DEC Alpha)

Http://security.debian.org/pool/updates/main/w/wireshark/wireshark-common_1.0.2-3+lenny10_alpha.deb
Size/MD5 checksum: 12098048 c6037e2144a2b606c89666a38bba255d
Http://security.debian.org/pool/updates/main/w/wireshark/tshark_1.0.2-3+lenny10_alpha.deb
Size/MD5 checksum: 127062 0ed9502cbcfafb5f40092dfb85bd1452
Http://security.debian.org/pool/updates/main/w/wireshark/wireshark_1.0.2-3+lenny10_alpha.deb
Size/MD5 checksum: 731182 7d68066a76be15c23097c467591a71d7
Http://security.debian.org/pool/updates/main/w/wireshark/wireshark-dev_1.0.2-3+lenny10_alpha.deb
Size/MD5 checksum: 570002 ef363dd7b6e59f55ac352dd7f476271f

Amd64 architecture (AMD x86_64 (AMD64 ))

Http://security.debian.org/pool/updates/main/w/wireshark/wireshark_1.0.2-3+lenny10_amd64.deb
Size/MD5 checksum: 659672 93affb6b939d97543c0a2ee094eb7bcf
Http://security.debian.org/pool/updates/main/w/wireshark/wireshark-common_1.0.2-3+lenny10_amd64.deb
Size/MD5 checksum: 11867538 e26471505e2511c44915167d9df30b2c
Http://security.debian.org/pool/updates/main/w/wireshark/tshark_1.0.2-3+lenny10_amd64.deb
Size/MD5 checksum: 119270 3507f87aae6c6eb333f5d6675557ffea
Http://security.debian.org/pool/updates/main/w/wireshark/wireshark-dev_1.0.2-3+lenny10_amd64.deb
Size/MD5 checksum: 568816 5c2bde00638f8be32513abe1c9b861f9

Arm architecture (ARM)

Http://security.debian.org/pool/updates/main/w/wireshark/wireshark-common_1.0.2-3+lenny10_arm.deb
Size/MD5 checksum: 10214680 bc5423c9321f4790707c2be839f48029
Http://security.debian.org/pool/updates/main/w/wireshark/tshark_1.0.2-3+lenny10_arm.deb
Size/MD5 checksum: 111310 3c7a4f2daba42dec5e4e5b0cad3c8ba4
Http://security.debian.org/pool/updates/main/w/wireshark/wireshark_1.0.2-3+lenny10_arm.deb
Size/MD5 checksum: 614450 ba489525ee84874cf3e9fb7a40f89d14
Http://security.debian.org/pool/updates/main/w/wireshark/wireshark-dev_1.0.2-3+lenny10_arm.deb
Size/MD5 checksum: 584538 1a02fc4e91ce9d1_bb8ed1e7902c280

Armel architecture (arm eabi)

Http://security.debian.org/pool/updates/main/w/wireshark/wireshark_1.0.2-3+lenny10_armel.deb
Size/MD5 checksum: 620126 27ace8479a33a8d685f019fa563d3afa
Http://security.debian.org/pool/updates/main/w/wireshark/wireshark-common_1.0.2-3+lenny10_armel.deb
Size/MD5 checksum: 10219808 ef603f9abcd981feb550a6f328592eba
Http://security.debian.org/pool/updates/main/w/wireshark/wireshark-dev_1.0.2-3+lenny10_armel.deb
Size/MD5 checksum: 586342 7929f0643a92cb084568da2e32ada209
Http://security.debian.org/pool/updates/main/w/wireshark/tshark_1.0.2-3+lenny10_armel.deb
Size/MD5 checksum: 113602 e459df96b13b2321ea4ac2b7ca055a55

Hppa architecture (hp pa risc)

Http://security.debian.org/pool/updates/main/w/wireshark/tshark_1.0.2-3+lenny10_hppa.deb
Size/MD5 checksum: 121180 7cc1f3a0fe508449031c851142b5c4d3
Http://security.debian.org/pool/updates/main/w/wireshark/wireshark-common_1.0.2-3+lenny10_hppa.deb
Size/MD5 checksum: 13271640 6bbfc0d14d3bb8c46b35a40523139c5f
Http://security.debian.org/pool/updates/main/w/wireshark/wireshark-dev_1.0.2-3+lenny10_hppa.deb
Size/MD5 checksum: 584306 c77db073cd386903377d301d656ec3b6
Http://security.debian.org/pool/updates/main/w/wireshark/wireshark_1.0.2-3+lenny10_hppa.deb
Size/MD5 checksum: 694870 5c35736053a02a728cc9263cea544118

I386 architecture (Intel ia32)

Http://security.debian.org/pool/updates/main/w/wireshark/wireshark-dev_1.0.2-3+lenny10_i386.deb
Size/MD5 checksum: 583572 3c416afdc0bed67389798748ac82dab1
Http://security.debian.org/pool/updates/main/w/wireshark/wireshark_1.0.2-3+lenny10_i386.deb
Size/MD5 checksum: 619668 b279bae201515f07f50b789fe9208ee3
Http://security.debian.org/pool/updates/main/w/wireshark/tshark_1.0.2-3+lenny10_i386.deb
Size/MD5 checksum: 111708 bd19cc8a584292771ce8b37a934b6759
Http://security.debian.org/pool/updates/main/w/wireshark/wireshark-common_1.0.2-3+lenny10_i386.deb
Size/MD5 checksum: 10109862 4a6846b885178fd578ecc6dc3b282132

Ia64 architecture (Intel ia64)

Http://security.debian.org/pool/updates/main/w/wireshark/wireshark-dev_1.0.2-3+lenny10_ia64.deb
Size/MD5 checksum: 568824 dabad8c92b646ce5bdf5ac4425593b1a
Http://security.debian.org/pool/updates/main/w/wireshark/tshark_1.0.2-3+lenny10_ia64.deb
Size/MD5 checksum: 154666 185f3441d66fcf3ce9c781dc061e4961
Http://security.debian.org/pool/updates/main/w/wireshark/wireshark_1.0.2-3+lenny10_ia64.deb
Size/MD5 checksum: 931572 a74e996b87300057ef62722bdccf072c
Http://security.debian.org/pool/updates/main/w/wireshark/wireshark-common_1.0.2-3+lenny10_ia64.deb
Size/MD5 checksum: 13684804 ec46eeb74513b1c42288f0c186313505

Mips architecture (MIPS (Big Endian ))

Http://security.debian.org/pool/updates/main/w/wireshark/wireshark-common_1.0.2-3+lenny10_mips.deb
Size/MD5 checksum: 10424544 8f76ad6d63aecdb627850b2729655b3e
Http://security.debian.org/pool/updates/main/w/wireshark/wireshark_1.0.2-3+lenny10_mips.deb
Size/MD5 checksum: 636682 909599c2175d06ba483baac5fbef9715
Http://security.debian.org/pool/updates/main/w/wireshark/tshark_1.0.2-3+lenny10_mips.deb
Size/MD5 checksum: 113264 333e8a51080d13136689b9786e4d0061
Http://security.debian.org/pool/updates/main/w/wireshark/wireshark-dev_1.0.2-3+lenny10_mips.deb
Size/MD5 checksum: 585810 921806111c71ed490ff18e05ef5383c7

Mipsel architecture (MIPS (Little Endian ))

Http://security.debian.org/pool/updates/main/w/wireshark/tshark_1.0.2-3+lenny10_mipsel.deb
Size/MD5 checksum: 113454 9602da05aa4bc7a22432bcd720660cc0
Http://security.debian.org/pool/updates/main/w/wireshark/wireshark-dev_1.0.2-3+lenny10_mipsel.deb
Size/MD5 checksum: 570006 1e8cb3f56fa73956d52268d237c15baf
Http://security.debian.org/pool/updates/main/w/wireshark/wireshark_1.0.2-3+lenny10_mipsel.deb
Size/MD5 checksum: 627162 2ef6443e548130d6d7f3e7bdf0176b6a
Http://security.debian.org/pool/updates/main/w/wireshark/wireshark-common_1.0.2-3+lenny10_mipsel.deb
Size/MD5 checksum: 9729736 fa8030ec05b4e395f0ba3c90ee670e46

Powerpc architecture (PowerPC)

Http://security.debian.org/pool/updates/main/w/wireshark/wireshark-dev_1.0.2-3+lenny10_powerpc.deb
Size/MD5 checksum: 582794 f2e0c6a4336e42c023c4f1db3dc00dd8
Http://security.debian.org/pool/updates/main/w/wireshark/wireshark_1.0.2-3+lenny10_powerpc.deb
Size/MD5 checksum: 677742 0dda6ce349cf9e844e7ba074765ab682
Http://security.debian.org/pool/updates/main/w/wireshark/wireshark-common_1.0.2-3+lenny10_powerpc.deb
Size/MD5 checksum: 11220016 5e5f2754bef30795bdab7486c5dd8a72
Http://security.debian.org/pool/updates/main/w/wireshark/tshark_1.0.2-3+lenny10_powerpc.deb
Size/MD5 checksum: 122572 ac15689cd78a06ac4242760c10a253af

S390 architecture (ibm s/390)

Http://security.debian.org/pool/updates/main/w/wireshark/wireshark-common_1.0.2-3+lenny10_s390.deb
Size/MD5 checksum: 12488184 b916661193fbbdef2e6838f5e144e0c4
Http://security.debian.org/pool/updates/main/w/wireshark/tshark_1.0.2-3+lenny10_s390.deb
Size/MD5 checksum: 122150 fa1d1a623a2cd95b2d59f5d910226086
Http://security.debian.org/pool/updates/main/w/wireshark/wireshark-dev_1.0.2-3+lenny10_s390.deb
Size/MD5 checksum: 569966 9c91e4417d2860da5e9903410f92d775
Http://security.debian.org/pool/updates/main/w/wireshark/wireshark_1.0.2-3+lenny10_s390.deb
Size/MD5 checksum: 671588 c2f017d2cb7bdd3a8c7c5f85aef2df6f

Iscsi architecture (Sun iSCSI/UltraSPARC)

Http://security.debian.org/pool/updates/main/w/wireshark/wireshark-common_1.0.2-3+lenny10_sparc.deb
Size/MD5 checksum: 11287328 d4bb52efa605646c1c207565c9c1eb77
Http://security.debian.org/pool/updates/main/w/wireshark/wireshark-dev_1.0.2-3+lenny10_sparc.deb
Size/MD5 checksum: 583744 803471967720b8f8d048844afef3a6b3
Http://security.debian.org/pool/updates/main/w/wireshark/tshark_1.0.2-3+lenny10_sparc.deb
Size/MD5 checksum: 113520 0f733a8ef15494173cf4055ee37e1842
Http://security.debian.org/pool/updates/main/w/wireshark/wireshark_1.0.2-3+lenny10_sparc.deb
Size/MD5 checksum: 629600 f7ed1aa09cb192c7d8f844cfc7fae2bc

Patch installation method:

1. Manually install the patch package:

First, use the following command to download the patch software:
# Wget url (the url is the patch download link)

Then, use the following command to install the patch:
# Dpkg-I file. deb (file is the patch name)

2. Use apt-get to automatically install the patch package:

First, use the following command to update the internal database:
# Apt-get update

Then, run the following command to install the update software package:
# Apt-get upgrade

Wireshark
---------
The vendor has released a patch to fix this security problem. Please download it from the vendor's homepage:

Http://www.wireshark.org/

Related Article

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

  • Sales Support

    1 on 1 presale consultation

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.