LANDesk Patch News Bulletin: Wireshark Version 1.4.5 is Available for Download 18-APR-2011

Version 1

    LANDesk Security and Patch News

     

    Headlines

    • (April 18, 2011) Wireshark has released v1.4.5. The following vulnerabilities have been fixed. See the security advisory for details and a workaround.

     

    The NFS dissector could crash on Windows. (Bug 5209)

     

    Versions affected: 1.4.0 to 1.4.4.

     

    The X.509if dissector could crash. (Bug 5754, Bug 5793)

     

    Versions affected: 1.2.0 to 1.2.15 and 1.4.0 to 1.4.4.

     

    Paul Makowski from SEI/CERT discovered that the DECT dissector could overflow a buffer. He verified that this could allow remote code execution on many platforms.

     

    Versions affected: 1.4.0 to 1.4.4.

     

    The following bugs have been fixed:

     

    Cygwin make fails after updating to bash v 4.1.9.2

     

    Export HTTP > All - System Appears Hung (but isn't). (Bug 1671)

     

    Some HTTP responses don't decode with TCP reassembly on. (Bug 3785)

     

    Wireshark crashes when cancelling a large sort operation. (Bug 5189)

     

    Wireshark crashes if SSL preferences RSA key is actually a DSA key. (Bug 5662)

     

    tshark incorrectly calculates TCP stream for some syn packets. (Bug 5743)

     

    Wireshark not able to decode the PPP frame in a sflow (RFC3176) flow sample packet because Wireshark incorrectly read the protocol in PPP frame header. (Bug 5746)

     

    Mysql protocol dissector: all fields should be little endian. (Bug 5759)

     

    Error when opening snoop from Juniper SSG-140. (Bug 5762)

     

    svnversion: command not found. (Bug 5798)

     

    capinfos: #ifdef HAVE_LIBGCRYPT block includes a line too many. (Bug 5803)

     

    Value of TCP segment data cannot be copied. (Bug 5811)

     

    proto_field_is_referenced() is not exported in libwireshark.dll. (Bug 5816)

     

    Wireshark ver. 1.4.4 not displayed "Granted QoS" field in a A11 packet. (Bug 5822)

     

     

     

           

    New Vulnerabilities

    • Vulnerability ID – WIRESHARKv1.4.5

     

    Changed Vulnerabilities

    • Vulnerability ID – WIRESHARKv1.4.4 (Added the replacement information.)

     

     

    New Patch Downloads

    • wireshark-win32-1.4.5.exe
    • wireshark-win64-1.4.5.exe

     

    Where to Send Feedback

    At LANDesk, we are constantly striving to improve our products and services and hope you find these changes reflective of our ongoing commitment to listen to you—our partners and customers—in providing the best possible solutions to meet your needs now and in the future.  Please continue to provide feedback by contacting our local support organization.

     

    Best regards,

    LANDesk Product Support

     

    Copyright © 2011 LANDesk Software.  All rights reserved. LANDesk is either a registered trademark or trademark of LANDesk Software, Ltd. or its affiliated entities in the United States and/or other countries. Other names or brands may be claimed as the property of others.

     

    Information in this document is provided for information purposes only.  The information presented here is subject to change without notice.  This information is not warranted to be error-free, nor subject to any other warranties or conditions, whether expressed orally or implied in law, including any implied warranties and conditions of merchantability or fitness for a particular purpose. LANDesk disclaims any liability with respect to this document and LANDesk has no responsibility or liability for any third party products of any content contained on any site referenced herein.  This document may not be reproduced or transmitted in any form or by any means, electronic or mechanical, for any purpose, without our prior written permission. For the most current product information, please visit http://www.landesk.com.