package: wireshark severity: grave tags: security Wireshark 0.99.4 fixes the following vulnerabilities:
The HTTP dissector could crash. (Bugs 1050 and 1079) Versions affected: 0.99.3. CVE-2006-5468 The LDAP dissector (and possibly others) could crash. (Bug 1054) Versions affected: 0.99.3. CVE-2006-5740 The XOT dissector could attempt to allocate a large amount of memory and crash. (Bug 1133) Versions affected: 0.9.8 to 0.99.3. CVE-2006-4805 The WBXML dissector could crash. (Bug 1134) Versions affected: 0.10.11 to 0.99.3. CVE-2006-5469 The MIME Multipart dissector was susceptible to an off-by-one error. (Bug 1135) Versions affected: 0.10.1 to 0.99.3. CVE-2006-4574 If AirPcap support was enabled, parsing a WEP key could sometimes cause a crash. Versions affected: 0.99.3. See http://www.wireshark.org/security/wnpa-sec-2006-03.html for details. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
