ALAS-2012-071


Amazon Linux AMI Security Advisory: ALAS-2012-71
Advisory Release Date: 2014-09-14 15:50 Pacific
Severity: Medium

Issue Overview:

Several flaws were found in Wireshark. If Wireshark read a malformed packet off a network or opened a malicious dump file, it could crash or, possibly, execute arbitrary code as the user running Wireshark.

Several denial of service flaws were found in Wireshark. Wireshark could crash or stop responding if it read a malformed packet off a network, or opened a malicious dump file.


Affected Packages:

wireshark


Issue Correction:
Run yum update wireshark to update your system.

New Packages:
i686:
    wireshark-devel-1.2.15-2.10.amzn1.i686
    wireshark-1.2.15-2.10.amzn1.i686
    wireshark-debuginfo-1.2.15-2.10.amzn1.i686

src:
    wireshark-1.2.15-2.10.amzn1.src

x86_64:
    wireshark-debuginfo-1.2.15-2.10.amzn1.x86_64
    wireshark-devel-1.2.15-2.10.amzn1.x86_64
    wireshark-1.2.15-2.10.amzn1.x86_64