Main Vulnerability Database SB2011111806

SB2011111806 - SUSE Linux update for wireshark

Published: November 18, 2011

Security Bulletin ID SB2011111806

Severity

Medium

Patch available

YES

Number of vulnerabilities 2

Exploitation vector Remote access

Highest impact Denial of service

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 2 secuirty vulnerabilities.

1) Resource management error (CVE-ID: CVE-2011-2597)

The vulnerability allows a remote non-authenticated attacker to perform service disruption.

The Lucent/Ascend file parser in Wireshark 1.2.x before 1.2.18, 1.4.x through 1.4.7, and 1.6.0 allows remote attackers to cause a denial of service (infinite loop) via malformed packets.

2) Resource management error (CVE-ID: CVE-2011-3266)

The vulnerability allows a remote non-authenticated attacker to perform service disruption.

The proto_tree_add_item function in Wireshark 1.6.0 through 1.6.1 and 1.4.0 through 1.4.8, when the IKEv1 protocol dissector is used, allows user-assisted remote attackers to cause a denial of service (infinite loop) via vectors involving a malformed IKE packet and many items in a tree.

Remediation

Install update from vendor's website.

References

https://lists.opensuse.org/opensuse-security-announce/2011-11/msg00021.html