Mandriva Linux Security Advisory : wireshark (MDVSA-2009:292-1)
High Nessus Plugin ID 42993
SynopsisThe remote Mandriva Linux host is missing one or more security updates.
DescriptionVulnerabilities have been discovered and corrected in wireshark, affecting DCERPC/NT dissector, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a file that records a malformed packet trace (CVE-2009-3550); and in wiretap/erf.c which allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted erf file (CVE-2009-3829).
The wireshark package has been updated to fix these vulnerabilities.
Packages for 2008.0 are provided for Corporate Desktop 2008.0 customers
SolutionUpdate the affected packages.