2011年6月 2日

[installer 2819] wireshark-1.2.17, 1.4.7

wireshark-1.2.17, 1.4.7 出ています。

セキュリティホールの修正が含まれています。
http://www.wireshark.org/security/wnpa-sec-2011-07.html
http://www.wireshark.org/security/wnpa-sec-2011-08.html
参照のこと。

☆ wireshark-1.2.17

http://www.wireshark.org/
http://www.wireshark.org/download.html
http://sourceforge.net/projects/wireshark/
http://sourceforge.net/projects/wireshark/files/

What's New

Bug Fixes

The following vulnerabilities have been fixed. See the security
advisory for details and a workaround.

o Large/infinite loop in the DICOM dissector. (Bug 5876)

Versions affected: 1.2.0 to 1.2.16 and 1.4.0 to 1.4.6.

o Huzaifa Sidhpurwala of the Red Hat Security Response Team
discovered that a corrupted Diameter dictionary file could
crash Wireshark.

Versions affected: 1.2.0 to 1.2.16 and 1.4.0 to 1.4.6.

o Huzaifa Sidhpurwala of the Red Hat Security Response Team
discovered that a corrupted snoop file could crash Wireshark.
(Bug 5912)

Versions affected: 1.2.0 to 1.2.16 and 1.4.0 to 1.4.6.

o David Maciejak of Fortinet's FortiGuard Labs discovered that
malformed compressed capture data could crash Wireshark. (Bug
5908)

Versions affected: 1.2.0 to 1.2.16 and 1.4.0 to 1.4.6.

o Huzaifa Sidhpurwala of the Red Hat Security Response Team
discovered that a corrupted Visual Networks file could crash
Wireshark. (Bug 5934)

Versions affected: 1.2.0 to 1.2.16 and 1.4.0 to 1.4.6.

The following bugs have been fixed:

New and Updated Features

There are no new features in this release.

New Protocol Support

There are no new protocols in this release.

Updated Protocol Support

Updated Capture File Support

There are no capture file support updates in this release.


☆ wireshark-1.4.7
http://www.wireshark.org/
http://www.wireshark.org/download.html
http://sourceforge.net/projects/wireshark/
http://sourceforge.net/projects/wireshark/files/

What's New

Bug Fixes

The following vulnerabilities have been fixed. See the security
advisory for details and a workaround.

o Large/infinite loop in the DICOM dissector. (Bug 5876)

Versions affected: 1.2.0 to 1.2.16 and 1.4.0 to 1.4.6.

o Huzaifa Sidhpurwala of the Red Hat Security Response Team
discovered that a corrupted Diameter dictionary file could
crash Wireshark.

Versions affected: 1.2.0 to 1.2.16 and 1.4.0 to 1.4.6.

o Huzaifa Sidhpurwala of the Red Hat Security Response Team
discovered that a corrupted snoop file could crash Wireshark.
(Bug 5912)

Versions affected: 1.2.0 to 1.2.16 and 1.4.0 to 1.4.6.

o David Maciejak of Fortinet's FortiGuard Labs discovered that
malformed compressed capture data could crash Wireshark. (Bug
5908)

Versions affected: 1.2.0 to 1.2.16 and 1.4.0 to 1.4.6.

o Huzaifa Sidhpurwala of the Red Hat Security Response Team
discovered that a corrupted Visual Networks file could crash
Wireshark. (Bug 5934)

Versions affected: 1.2.0 to 1.2.16 and 1.4.0 to 1.4.6.

The following bugs have been fixed:

o AIM dissector has some endian issues. (Bug 5464)

o Telephony竊樽TP3竊樽SUS doesn't display window. (Bug 5605)

o Support for MS NetMon 3.x traces containing raw IPv6 ("Type
7") packets. (Bug 5817)

o Service Indicator in M3UA protocol data. (Bug 5834)

o IEC60870-5-104 protocol, incorrect decoding of timestamp type
CP56Time2a. (Bug 5889)

o DNP3 dissector incorrect constants AL_OBJ_FCTR_16NF
_FDCTR_32NF _FDCTR_16NF. (Bug 5920)

o 3GPP QoS: Traffic class is not decoded properly. (Bug 5928)

o Wireshark crashes when creating ProtoField.framenum in Lua.
(Bug 5930)

o Fix a wrong mask to extract FMID from DECT packets dissector.
(Bug 5947)

o Incorrect DHCPv6 remote identifier option parsing. (Bug 5962)

New and Updated Features

There are no new features in this release.

New Protocol Support

There are no new protocols in this release.

Updated Protocol Support

DICOM, IEC104, M3UA, TCP,

New and Updated Capture File Support

Network Monitor.

----
こがよういちろう


投稿者 xml-rpc : 2011年6月 2日 10:17
役に立ちました?:
過去のフィードバック 平均:(0) 総合:(0) 投票回数:(0)
本記事へのTrackback: http://hoop.euqset.org/blog/mt-tb2006.cgi/104245
トラックバック
コメント
コメントする




画像の中に見える文字を入力してください。