Ubuntu
wireshark package

More vulnerabilities in wireshark 0.99.2 through 0.99.8 (CVE-2008-156[1-3])

Bug #212065 reported by Till Ulen
266
Affects Status Importance Assigned to Milestone
wireshark (Ubuntu)
Fix Released
Undecided
Unassigned
Feisty
Won't Fix
Undecided
Unassigned
Gutsy
Won't Fix
Undecided
Unassigned

Bug Description

Binary package hint: wireshark

Upstream advisory: http://www.wireshark.org/security/wnpa-sec-2008-02.html
Resolution summary: either upgrade to Wireshark 1.0.0 or disable the vulnerable dissectors.

Excerpts from the National Vulnerability Database entries:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1561
https://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-1561
"Multiple unspecified vulnerabilities in Wireshark (formerly Ethereal) 0.99.5 through 0.99.8 allow remote attackers to cause a denial of service (application crash) via a malformed packet to the (1) X.509sat or (2) Roofnet dissectors. NOTE: Vector 2 might also lead to a hang."

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1562
https://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-1562
"The LDAP dissector in Wireshark (formerly Ethereal) 0.99.2 through 0.99.8 allows remote attackers to cause a denial of service (application crash) via a malformed packet, a different vulnerability than CVE-2006-5740."

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1563
https://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-1563
"The "decode as" feature in packet-bssap.c in the SCCP dissector in Wireshark (formerly Ethereal) 0.99.6 through 0.99.8 allows remote attackers to cause a denial of service (application crash) via a malformed packet."

CVE References

Revision history for this message
Till Ulen (tillulen) wrote :

Bug #210687 is not public so I can't tell whether this is a duplicate or not. It would be nice if the fixes could be backported to gutsy.

Revision history for this message
Till Ulen (tillulen) wrote :

Sorry, it is actually public and is a duplicate of bug #211057 which is a request to include 1.0.0 into Hardy. So let this bug be a request to backport the fixes to gutsy.

William Grant (wgrant)
Changed in wireshark:
status: New → Fix Released
Revision history for this message
Hew (hew) wrote :

Ubuntu Feisty Fawn is no longer supported, so a SRU will not be issued for this release. Marking Feisty as Won't Fix.

Changed in wireshark:
status: New → Won't Fix
Revision history for this message
Sergio Zanchetta (primes2h) wrote :

The 18 month support period for Gutsy Gibbon 7.10 has reached its end of life -
http://www.ubuntu.com/news/ubuntu-7.10-eol . As a result, we are closing the
Gutsy task.

Changed in wireshark (Ubuntu Gutsy):
status: New → Won't Fix
To post a comment you must log in.
This report contains Public Security information  
Everyone can see this security related information.

Duplicates of this bug

Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.