Red Hat Bugzilla – Bug 124535
CAN-2004-0504/5/6/7 Ethereal 0.10.4 contains security fixes
Last modified: 2015-03-04 20:14:02 EST
Issues have been discovered in the following protocol dissectors:
* A SIP packet could make Ethereal crash under specific
conditions, as described in the following message:
* The AIM dissector could throw an assertion, causing Ethereal to
terminate abnormally (0.10.3).
* It was possible for the SPNEGO dissector to dereference a null
pointer, causing a crash (0.9.8 to 0.10.3).
* The MMSE dissector was susceptible to a buffer overflow. (0.10.1
Note date on ethereal advisory states "March 22nd" but this is
incorrect, it should be "May 13th" (mailed Gerald with correction).
CVE names applied for.
*** Bug 124536 has been marked as a duplicate of this bug. ***