发布日期:2010-08-23
更新日期:2010-09-03
受影响系统:
Wireshark Wireshark 1.2.0 - 1.2.9
Wireshark Wireshark 0.10.8 - 1.0.14
不受影响系统:
Wireshark Wireshark 1.2.10
Wireshark Wireshark 1.0.15
描述:
--------------------------------------------------------------------------------
BUGTRAQ ID: 42618
CVE(CAN) ID: CVE-2010-2992,CVE-2010-2993,CVE-2010-2994,CVE-2010-2995
Wireshark之前名为Ethereal,是一款非常流行的网络协议分析工具。
Wireshark的GSM A RR和IPMI协议解析模块中存在死循环和空指针引用漏洞,SigComp Universal Decompressor Virtual Machine(UDVM)和ASN.1 BER协议解析模块中存在缓冲区溢出漏洞。用户受骗从网络抓取了恶意报文或打开了恶意抓包文件就可以触发这些漏洞,导致拒绝服务或执行任意代码。
<*来源:Buildbot Builder (buildbot@wireshark.org)
链接:
*>
建议:
--------------------------------------------------------------------------------
厂商补丁:
Debian
------
Debian已经为此发布了一个安全公告(DSA-2101-1)以及相应补丁:
DSA-2101-1:New wireshark packages fix several vulnerabilities
链接:
补丁下载:
Source archives:
Size/MD5 checksum: 16935492 1834437f7c6dbed02082e7757133047d
+lenny10.diff.gz
Size/MD5 checksum: 119766 5a4194b36f275740420e6976a3cf4801
+lenny10.dsc
Size/MD5 checksum: 1506 8c8b1b6eb5746bb12f3a31606279d2a4
alpha architecture (DEC Alpha)
+lenny10_alpha.deb
Size/MD5 checksum: 12098048 c6037e2144a2b606c89666a38bba255d
+lenny10_alpha.deb
Size/MD5 checksum: 127062 0ed9502cbcfafb5f40092dfb85bd1452
+lenny10_alpha.deb
Size/MD5 checksum: 731182 7d68066a76be15c23097c467591a71d7
+lenny10_alpha.deb
Size/MD5 checksum: 570002 ef363dd7b6e59f55ac352dd7f476271f
amd64 architecture (AMD x86_64 (AMD64))
+lenny10_amd64.deb
Size/MD5 checksum: 659672 93affb6b939d97543c0a2ee094eb7bcf
+lenny10_amd64.deb
Size/MD5 checksum: 11867538 e26471505e2511c44915167d9df30b2c
+lenny10_amd64.deb
Size/MD5 checksum: 119270 3507f87aae6c6eb333f5d6675557ffea
+lenny10_amd64.deb
Size/MD5 checksum: 568816 5c2bde00638f8be32513abe1c9b861f9
arm architecture (ARM)
+lenny10_arm.deb
Size/MD5 checksum: 10214680 bc5423c9321f4790707c2be839f48029
+lenny10_arm.deb
Size/MD5 checksum: 111310 3c7a4f2daba42dec5e4e5b0cad3c8ba4
+lenny10_arm.deb
Size/MD5 checksum: 614450 ba489525ee84174cf3e9fb7a40f89d14
+lenny10_arm.deb
Size/MD5 checksum: 584538 1a02fc4e91ce9d386bb8ed1e7902c280
armel architecture (ARM EABI)
+lenny10_armel.deb
Size/MD5 checksum: 620126 27ace8479a33a8d685f019fa563d3afa
+lenny10_armel.deb
Size/MD5 checksum: 10219808 ef603f9abcd981feb550a6f328592eba
+lenny10_armel.deb
Size/MD5 checksum: 586342 7929f0643a92cb084568da2e32ada209
+lenny10_armel.deb
Size/MD5 checksum: 113602 e459df96b13b2321ea4ac2b7ca055a55
hppa architecture (HP PA RISC)