GLSA-201110-02 : Wireshark: Multiple vulnerabilities
Critical Nessus Plugin ID 56426
SynopsisThe remote Gentoo host is missing one or more security-related patches.
DescriptionThe remote host is affected by the vulnerability described in GLSA-201110-02 (Wireshark: Multiple vulnerabilities)
Multiple vulnerabilities have been discovered in Wireshark. Please review the CVE identifiers referenced below for details.
A remote attacker could send specially crafted packets on a network being monitored by Wireshark, entice a user to open a malformed packet trace file using Wireshark, or deploy a specially crafted Lua script for use by Wireshark, possibly resulting in the execution of arbitrary code, or a Denial of Service condition.
There is no known workaround at this time.
SolutionAll Wireshark users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot --verbose '>=net-analyzer/wireshark-1.4.9'