Wireshark: Multiple vulnerabilities — GLSA 201510-03

Multiple vulnerabilities have been found in Wireshark, allowing attackers to cause Denial of Service condition.

Affected packages

Background

Wireshark is a network protocol analyzer formerly known as ethereal.

Description

Multiple vulnerabilities have been discovered in Wireshark. Please review the CVE identifiers referenced below for details.

Impact

A remote attacker could possibly cause a Denial of Service condition.

Workaround

There is no known workaround at this time.

Resolution

 # emerge --sync
 # emerge --ask --oneshot --verbose ">=net-analyzer/wireshark-1.12.7"
 

References

• CVE-2015-2187
• CVE-2015-2188
• CVE-2015-2189
• CVE-2015-2190
• CVE-2015-2191
• CVE-2015-2192
• CVE-2015-3182
• CVE-2015-3808
• CVE-2015-3809
• CVE-2015-3810
• CVE-2015-3811
• CVE-2015-3812
• CVE-2015-3813
• CVE-2015-3814
• CVE-2015-3815
• CVE-2015-3906
• CVE-2015-4651
• CVE-2015-4652

Release date
October 31, 2015

Latest revision
October 31, 2015: 1

Severity
normal

Exploitable
remote

Bugzilla entries

• 536034
• 542206
• 548898
• 549432
• 552434
• 557522