Red Hat Bugzilla – Bug 127381
CAN-2004-0633/34/35 Multiple problems in Ethereal 0.10.4
Last modified: 2015-03-04 20:14:09 EST
A number of issues hve been discovered in Ethereal.
Update severity to security.
Here's my analysis of the bugs fixed.
# The iSNS dissector could make Ethereal abort in some cases. (0.10.3
This is an integer overflow flaw. It's most likely just a DOS, I see
no evidence that it could run arbitrary code, but I'm not going to
rule it out.
# SMB SID snooping could crash if there was no policy name for a
handle. (0.9.15 - 0.10.4)
This is a null pointer flaw. It's a DOS.
# The SNMP dissector could crash due to a malformed or missing
community string. (0.8.15 - 0.10.4)
This is an out of bounds memory read issue.
This issue also affects RHEL2.1
A backported patch for Ethereal 0.10.3 can be found here:
Errata in progress
An errata has been issued which should help the problem
described in this bug report. This report is therefore being
closed with a resolution of ERRATA. For more information
on the solution and/or where to find the updated files,
please follow the link below. You may reopen this bug report
if the solution does not work for you.