Mandrake Linux Security Advisory : ethereal (MDKSA-2005:131)
High Nessus Plugin ID 19891
SynopsisThe remote Mandrake Linux host is missing one or more security updates.
DescriptionA number of vulnerabilities were discovered in versions of Ethereal prior to version 0.10.12, including :
The SMB dissector could overflow a buffer or exhaust memory (CVE-2005-2365).
iDefense discovered that several dissectors are vulnerable to format string overflows (CVE-2005-2367).
A number of other portential crash issues in various dissectors have also been corrected.
This update provides Ethereal 0.10.12 which is not vulnerable to these issues.
SolutionUpdate the affected packages.