New wireshark updates fix some issues.
This wireshark update fixes:
- Use of un-initialized variables (CVE-2011-1590)
- Buffer overflow in DECT dissector (CVE-2011-1591)
- Crash in NFS dissector on Windows (CVE-2011-1592)
-
Submitted by
Adrian Schröter (adrianSuSE)
- Version 4539
Fixed bugs
bnc#688109
VUL-0: New wireshark 1.4.5 versions fix some issues
bnc#685023
wireshark stops capturing File contains a record thats not valid
CVE#CVE-2011-1590
The X.509if dissector in Wireshark 1.2.x before 1.2.16 and 1.4.x before 1.4.5 does not properly initialize certain global variables, which allows remote attackers to cause a denial of service (application crash) via a crafted .pcap file.
CVE#CVE-2011-1591
Stack-based buffer overflow in the DECT dissector in epan/dissectors/packet-dect.c in Wireshark 1.4.x before 1.4.5 allows remote attackers to execute arbitrary code via a crafted .pcap file.
CVE#CVE-2011-1592
The NFS dissector in epan/dissectors/packet-nfs.c in Wireshark 1.4.x before 1.4.5 on Windows uses an incorrect integer data type during decoding of SETCLIENTID calls, which allows remote attackers to cause a denial of service (application crash) via a cra
