Do Wireshark issues CVE-2010-1455, CVE-2010-2283, CVE-2010-2284, CVE-2010-2285, CVE-2010-2286, CVE-2010-2287, CVE-2010-2995, and CVE-2010-2994 affect Red Hat Enterprise Linux?
Issue
The upstream Wireshark advisories wnpa-sec-2010-03, wnpa-sec-2010-05, and wnpa-sec-2010-07 resolve the flaws identified by CVE-2010-1455, CVE-2010-2283, CVE-2010-2284, CVE-2010-2285, CVE-2010-2286, CVE-2010-2287, CVE-2010-2995, and CVE-2010-2994.
Environment
- Red Hat Enterprise Linux 3
- Red Hat Enterprise Linux 4
- Red Hat Enterprise Linux 5
Solution
The Red Hat Security Response Team has rated the CVE-2010-2287 and CVE-2010-2995 issues as having moderate security impact, and the CVE-2010-1455, CVE-2010-2283, CVE-2010-2284, and CVE-2010-2286 issues as having low security impact. These issues have been resolved for Red Hat Enterprise Linux 3, 4, and 5 by the RHSA-2010:0625 wireshark update, released on August 11, 2010.
The CVE-2010-2285 and CVE-2010-2994 issues do not affect Red Hat Enterprise Linux 3, 4, or 5.
Comments