Debian DSA-2201-1 : wireshark - several vulnerabilities
Medium Nessus Plugin ID 52948
SynopsisThe remote Debian host is missing a security-related update.
DescriptionHuzaifa Sidhpurwala, Joernchen, and Xiaopeng Zhang discovered several vulnerabilities in the Wireshark network traffic analyzer.
Vulnerabilities in the DCT3, LDAP and SMB dissectors and in the code to parse pcag-ng files could lead to denial of service or the execution of arbitrary code.
SolutionUpgrade the wireshark packages.
For the oldstable distribution (lenny), this problem has been fixed in version 1.0.2-3+lenny13.
For the stable distribution (squeeze), this problem has been fixed in version 1.2.11-6+squeeze1.