Common Vulnerabilities and Exposures assigned an identifier CVE-2008-3933 to the following vulnerability: Wireshark (formerly Ethereal) 0.10.14 through 1.0.2 allows attackers to cause a denial of service (crash) via a packet with crafted zlib-compressed data that triggers an invalid read in the tvb_uncompress function. References: http://www.wireshark.org/security/wnpa-sec-2008-05.html https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=2649 https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=2682
wireshark-1.0.3-1.fc8 has been pushed to the Fedora 8 stable repository. If problems still persist, please make note of it in this bug report.
wireshark-1.0.3-1.fc9 has been pushed to the Fedora 9 stable repository. If problems still persist, please make note of it in this bug report.
This issue was addressed in: Red Hat Enterprise Linux: http://rhn.redhat.com/errata/RHSA-2008-0890.html Fedora: https://admin.fedoraproject.org/updates/F8/FEDORA-2008-7894 https://admin.fedoraproject.org/updates/F9/FEDORA-2008-7936