Contact | Site en Français               

 


 

Vulnerabilities & Threats
 
  VUPEN Security Advisories
  Linux Security Advisories

  Malware Advisories
  Security Research
  Threat Watch Blog
  Zero-Day Monitor
  Search Engine
  Mailing List & RSS
 
   

>> Fedora Security Update Fixes Ethereal IRC Dissector Vulnerability

Title : Fedora Security Update Fixes Ethereal IRC Dissector Vulnerability
VUPEN ID : VUPEN/ADV-2006-0067
CVE ID : CVE-2005-3313
Rated as : Moderate Risk 
Remotely Exploitable : Yes
Locally Exploitable : Yes
Release Date : 2006-01-06

Technical Description    Receive VUPEN Security alerts in a Text format  Receive VUPEN Security alerts in a PDF format  Receive VUPEN Security alerts in an XML format  Receive VUPEN Security notifications by SMS 

Fedora has released updated packages to correct a vulnerability identified in Ethereal. This flaw is due to an infinite loop in the IRC dissector, which could be exploited by remote attackers to cause a denial of service. For additional information, see : VUPEN/ADV-2005-3095

Affected Products

Fedora Core 3
Fedora Core 4

Solution

Upgrade the affected packages :

http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/

37de6115fdd7816ac1916c0ac0166190 SRPMS/ethereal-0.10.14-1.FC3.1.src.rpm
d70b0319cac82a7ff450358ea10fa100 x86_64/ethereal-0.10.14-1.FC3.1.x86_64.rpm
dbef72404739fcf2d3ba25202955cf64 x86_64/ethereal-gnome-0.10.14-1.FC3.1.x86_64.rpm
4240b81a06114352718c54af73fce160 x86_64/debug/ethereal-debuginfo-0.10.14-1.FC3.1.x86_64.rpm
5aed47fb84cedd9ab9fc24f70c26506c i386/ethereal-0.10.14-1.FC3.1.i386.rpm
747e7bb89b7638e2376d459578f7224e i386/ethereal-gnome-0.10.14-1.FC3.1.i386.rpm
e6d37b48f003bf925981b8ee56d80665 i386/debug/ethereal-debuginfo-0.10.14-1.FC3.1.i386.rpm

http://download.fedora.redhat.com/pub/fedora/linux/core/updates/4/

affe1eb1afcd43ff516e84d2d72ffc05 SRPMS/ethereal-0.10.14-1.FC4.1.src.rpm
0bad077e8bb64b17b8d46ff7b850981b ppc/ethereal-0.10.14-1.FC4.1.ppc.rpm
7c3487788fd67fcff93a8ab84b8a02d6 ppc/ethereal-gnome-0.10.14-1.FC4.1.ppc.rpm
269573f80ae4c2e6ed293679017e3c52 ppc/debug/ethereal-debuginfo-0.10.14-1.FC4.1.ppc.rpm
1f2d0fc4c51781edf58492848d275a30 x86_64/ethereal-0.10.14-1.FC4.1.x86_64.rpm
0596c4ecffad375876556769cba26662 x86_64/ethereal-gnome-0.10.14-1.FC4.1.x86_64.rpm
933603daec37ab30725cf822c015e911 x86_64/debug/ethereal-debuginfo-0.10.14-1.FC4.1.x86_64.rpm
b108f4faf613e9ec7ac1c872f6f6b9e6 i386/ethereal-0.10.14-1.FC4.1.i386.rpm
ceaa262d2bbd36d7e598f306d2ae85d8 i386/ethereal-gnome-0.10.14-1.FC4.1.i386.rpm
2889e71042aca4212a9f373e66f6a8e1 i386/debug/ethereal-debuginfo-0.10.14-1.FC4.1.i386.rpm

References

http://www.vupen.com/english/advisories/2006/0067
http://www.redhat.com/archives/fedora-announce-list/2006-January/msg00005.html
http://www.redhat.com/archives/fedora-announce-list/2006-January/msg00006.html

ChangeLog

2006-01-06 : Initial release

Vulnerability Management

Subscribe to VUPEN VNS and receive real-time e-mail and SMS alerts when new advisories or patches relevant to your systems and network configurations are available.

Feedback

If you have additional information or corrections for this security advisory please submit them via our contact form.
 

Vulnerability Alerting

Free 14-Day Trial
 
  Latest News

 

  >> 2009-06-10

     

  VUPEN Security Research
  Discovered Critical Flaws
  in Adobe Acrobat and MS
  Office Word


  >> 2009-06-02

     

  VUPEN Security Research
  Discovered Critical Flaws
  in ACDSee Products


  >> 2009-05-22

     

  VUPEN Discovered Two
  Critical Vulnerabilities in
  Novell GroupWise 8 / 7


  >> 2009-05-12

     

  Microsoft Patched 14
  Office PowerPoint Flaws

 

  >> 2009-04-28

     

  Adobe Reader / Acrobat
  Vulnerabilities Disclosed

 

 

More Informations    
    








Copyright 2003-2009 © VUPEN.COM - Privacy Policy