Multiple vulnerabilities have been discovered in Wireshark which allow for Denial of Service.
|Package||net-analyzer/wireshark on all architectures|
|Affected versions||< 1.2.1|
|Unaffected versions||>= 1.2.1|
Wireshark is a versatile network protocol analyzer.
Multiple vulnerabilities were discovered in Wireshark:
A remote attacker could exploit these vulnerabilities by sending specially crafted packets on a network being monitored by Wireshark or by enticing a user to read a malformed packet trace file to cause a Denial of Service.
There is no known workaround at this time.
All Wireshark users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot --verbose ">=net-analyzer/wireshark-1.2.1"
September 13, 2009
September 13, 2009: 01