|
Ethereal Multiple Unspecified iSNS, SMB and SNMP Protocol Dissector Vulnerabilities
Solution: Conectiva has released advisory CLA-2005:916 along with fixes dealing with these and other issues. Please see the referenced advisory for more information. RedHat has released an updated advisory RHSA-2004:378-09 and fixes to address this issue on Red Hat Linux Enterprise platforms. Customers who are affected by this issue are advised to apply the appropriate updates. Customers subscribed to the Red Hat Network may apply the appropriate fixes using the Red Hat Update Agent (up2date). Please see referenced advisory for additional information. Gentoo Linux has released advisory GLSA 200407-08 dealing with this issue. Gentoo users are advised to take the following steps to upgrade their vulnerable packages: emerge sync emerge -pv ">=net-analyzer/ethereal-0.10.5" emerge ">=net-analyzer/ethereal-0.10.5" Please see the referenced Gentoo advisory for more information. Mandrake has released an advisory (MDKSA-2004:067) and fixes to address this issue, please see the referenced advisory for further details regarding obtaining and applying appropriate fixes. Redhat has released an advisory (FEDORA-2004-220) and fixes addressing this issue for Fedora Core 2. Please see the referenced advisory for further details regarding obtaining and applying appropriate fixes. Redhat has released an advisory (FEDORA-2004-219) and fixes addressing this issue for Fedora Core 1. Please see the referenced advisory for further details regarding obtaining and applying appropriate fixes. Debian has released a security advisory (DSA 528-1) to address this issue. Please see the attached advisory for details on obtaining and applying fixes. Netwosix Linux Security has released advisory LNSA-#2004-0016 to address this issue. Please see the referenced advisory for further information. Users of affected packages are urged to execute the following commands with superuser privileges: cd /usr/ports/graphics/ethereal rm nepote wget http://download.netwosix.org/0016/nepote sh nepote The vendor has released security advisory enpa-sa-00015 as well as an upgrade dealing with this issue. SGI has made available Patch 10095, correcting this vulnerability for systems running SGI Advanced Linux Environment 3: Patch 10095 is available from http://support.sgi.com/ and ftp://patches.sgi.com/support/free/security/patches/ProPack/3/ The individual RPMs from Patch 10095 are available from: ftp://oss.sgi.com/projects/sgi_propack/download/3/updates/RPMS ftp://oss.sgi.com/projects/sgi_propack/download/3/updates/SRPMS RedHat has released a Fedora legacy advisory (FLSA:1840) to address various issues in Ethereal. This advisory fixes these issues in Red Hat Linux 7.3 and 9 running on the i386 architecture. Please see the referenced advisory for more details and information about obtaining fixes. RedHat Fedora Core2
RedHat Fedora Core1
Ethereal Group Ethereal 0.10
Ethereal Group Ethereal 0.10.1
Ethereal Group Ethereal 0.10.2
Ethereal Group Ethereal 0.10.3
Ethereal Group Ethereal 0.10.4
Ethereal Group Ethereal 0.8.15
Ethereal Group Ethereal 0.8.18
Ethereal Group Ethereal 0.8.19
Ethereal Group Ethereal 0.9
Ethereal Group Ethereal 0.9.1
Ethereal Group Ethereal 0.9.10
Ethereal Group Ethereal 0.9.11
Ethereal Group Ethereal 0.9.12
Ethereal Group Ethereal 0.9.13
Ethereal Group Ethereal 0.9.14
Ethereal Group Ethereal 0.9.15
Ethereal Group Ethereal 0.9.16
Ethereal Group Ethereal 0.9.2
Ethereal Group Ethereal 0.9.3
Ethereal Group Ethereal 0.9.4
Ethereal Group Ethereal 0.9.5
Ethereal Group Ethereal 0.9.6
Ethereal Group Ethereal 0.9.7
Ethereal Group Ethereal 0.9.8
Ethereal Group Ethereal 0.9.9
|
|
 Privacy Statement |
