Mailinglist Archive: opensuse-security (520 mails)

< Previous Next >
Ethereal 8.14
  • From: "revans@xxxxxxx" <revans@xxxxxxx>
  • Date: 02 Dec 2000 18:49:54 PST
  • Message-id: <20001203034035.A1BD9DF923@xxxxxxxxxxxx>

On Nov 20 Ethereal 8.14 was released. Redhat and Debian have 8.14
packages available, powertools 7.0 and the unstable tree in Debian.
A notice was sent out on Freshmeat, the exploit was posted to
Bugtraq, but there is nothing in suse-security-announce, on the
security web page or in the SuSE 7.0 i386 updated packages directory

Thank you


"An exploit for a buffer overrun in the AFS dissector was recently
released on BugTraq.
Ethereal 0.8.14 fixes this and other possibly-exploitable overruns.
Also new in 0.8.14 are
dissectors for WAP, SIP, AIM/OSCAR, 802.11, GIOP v1.2, and MGCP
(plugin). Other
dissectors were updated as well. Be sure to upgrade to 0.8.14 as soon
as possible."

< Previous Next >
Follow Ups