|Bugzilla:||435483: CVE-2008-1072 wireshark: TFTP dissector crash|
The MITRE CVE dictionary describes this issue as:
The TFTP dissector in Wireshark (formerly Ethereal) 0.6.0 through 0.99.7, when running on Ubuntu 7.10, allows remote attackers to cause a denial of service (crash or memory consumption) via a malformed packet, possibly related to a Cairo library bug.
The affected version of Wireshark as shipped in Red Hat Enterprise Linux 3, 4, and 5 were fixed via: https://rhn.redhat.com/errata/RHSA-2008-0890.html
Red Hat security errata
|Red Hat Enterprise Linux version 3 (wireshark)||RHSA-2008:0890||October 01, 2008|
|Red Hat Enterprise Linux version 4 (wireshark)||RHSA-2008:0890||October 01, 2008|
|Red Hat Enterprise Linux version 5 (wireshark)||RHSA-2008:0890||October 01, 2008|
This page is generated automatically and has not been checked for errors or omissions.
For clarification or corrections please contact the Red Hat Security Response Team.