Scientific Linux Security Update : wireshark on SL3.x, SL4.x, SL5.x i386/x86_64
Critical Nessus Plugin ID 60596
SynopsisThe remote Scientific Linux host is missing one or more security updates.
DescriptionA format string flaw was found in Wireshark. If Wireshark read a malformed packet off a network or opened a malicious dump file, it could crash or, possibly, execute arbitrary code as the user running Wireshark. (CVE-2009-1210)
Several denial of service flaws were found in Wireshark. Wireshark could crash or stop responding if it read a malformed packet off a network, or opened a malicious dump file. (CVE-2009-1268, CVE-2009-1269, CVE-2009-1829)
All running instances of Wireshark must be restarted for the update to take effect.
SolutionUpdate the affected wireshark and / or wireshark-gnome packages.