Protect yourself against future threats.
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 =========================================================================== AUSCERT External Security Bulletin Redistribution ESB-2006.0793 -- [Debian] New ethereal packages fix denial of service 1 November 2006 =========================================================================== AusCERT Security Bulletin Summary --------------------------------- Product: ethereal Publisher: Debian Operating System: Debian GNU/Linux 3.1 Impact: Denial of Service Access: Remote/Unauthenticated CVE Names: CVE-2006-4805 CVE-2006-4574 Ref: AA-2006.0089 Original Bulletin: http://www.debian.org/security/2006/dsa-1201 - --------------------------BEGIN INCLUDED TEXT-------------------- - -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - - -------------------------------------------------------------------------- Debian Security Advisory DSA 1201-1 security@debian.org http://www.debian.org/security/ Moritz Muehlenhoff October 31st, 2006 http://www.debian.org/security/faq - - -------------------------------------------------------------------------- Package : ethereal Vulnerability : several Problem-Type : remote Debian-specific: no CVE ID : CVE-2006-4574 CVE-2006-4805 Debian Bug : 396258 Several remote vulnerabilities have been discovered in the Ethereal network scanner. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2005-4574 It was discovered that the MIME multipart dissector is vulnerable to denial of service caused by an off-by-one overflow. CVE-2006-4805 It was discovered that the XOT dissector is vulnerable to denial of service caused by memory corruption. For the stable distribution (sarge) these problems have been fixed in version 0.10.10-2sarge9. Due to technical problems with the security buildd infrastructure this update lacks builds for the hppa and sparc architecture. They will be released as soon as the problems are resolved. For the unstable distribution (sid) these problems will be fixed soon. We recommend that you upgrade your ethereal packages. Upgrade Instructions - - -------------------- wget url will fetch the file for you dpkg -i file.deb will install the referenced file. If you are using the apt-get package manager, use the line for sources.list as given below: apt-get update will update the internal database apt-get upgrade will install corrected packages You may use an automated update by adding the resources from the footer to the proper configuration. Debian GNU/Linux 3.1 alias sarge - - -------------------------------- Source archives: http://security.debian.org/pool/updates/main/e/ethereal/ethereal_0.10.10-2sarge9.dsc Size/MD5 checksum: 855 4111fa99ac63f549e0ed3e2db668e542 http://security.debian.org/pool/updates/main/e/ethereal/ethereal_0.10.10-2sarge9.diff.gz Size/MD5 checksum: 178221 6566de4d9fc112f25f6bfaf45ad77faa http://security.debian.org/pool/updates/main/e/ethereal/ethereal_0.10.10.orig.tar.gz Size/MD5 checksum: 7411510 e6b74468412c17bb66cd459bfb61471c Alpha architecture: http://security.debian.org/pool/updates/main/e/ethereal/ethereal_0.10.10-2sarge9_alpha.deb Size/MD5 checksum: 543092 c89ff6f8bdc7e6f7eb2650d5076f03e6 http://security.debian.org/pool/updates/main/e/ethereal/ethereal-common_0.10.10-2sarge9_alpha.deb Size/MD5 checksum: 5476386 e2a8e648f15a347d05f5e5cd624edb4c http://security.debian.org/pool/updates/main/e/ethereal/ethereal-dev_0.10.10-2sarge9_alpha.deb Size/MD5 checksum: 154592 5e0d5c37c0cc589d05d6e748e51e03ea http://security.debian.org/pool/updates/main/e/ethereal/tethereal_0.10.10-2sarge9_alpha.deb Size/MD5 checksum: 106306 f23e0e55dc96d7bdcb0fb95cdfba5548 AMD64 architecture: http://security.debian.org/pool/updates/main/e/ethereal/ethereal_0.10.10-2sarge9_amd64.deb Size/MD5 checksum: 486550 ffd006375c90a4d059af7a024188776e http://security.debian.org/pool/updates/main/e/ethereal/ethereal-common_0.10.10-2sarge9_amd64.deb Size/MD5 checksum: 5334530 341c8645167abbae9ae6147b83649edb http://security.debian.org/pool/updates/main/e/ethereal/ethereal-dev_0.10.10-2sarge9_amd64.deb Size/MD5 checksum: 154598 b1d1d14d3d41120c1c5c65ce89f08ab2 http://security.debian.org/pool/updates/main/e/ethereal/tethereal_0.10.10-2sarge9_amd64.deb Size/MD5 checksum: 99588 fdf5d3d8677e03c3edf2cfff04fba4ec ARM architecture: http://security.debian.org/pool/updates/main/e/ethereal/ethereal_0.10.10-2sarge9_arm.deb Size/MD5 checksum: 473062 9a901ea673c269ccbf41ecdff1df53dd http://security.debian.org/pool/updates/main/e/ethereal/ethereal-common_0.10.10-2sarge9_arm.deb Size/MD5 checksum: 4688102 09120393788e912b7ac18182b09fcd2e http://security.debian.org/pool/updates/main/e/ethereal/ethereal-dev_0.10.10-2sarge9_arm.deb Size/MD5 checksum: 154596 e539e5c413c0c39957c0abb9b34c9cfb http://security.debian.org/pool/updates/main/e/ethereal/tethereal_0.10.10-2sarge9_arm.deb Size/MD5 checksum: 95664 2131328ee58a900aedf3766ddbbfc98e Intel IA-32 architecture: http://security.debian.org/pool/updates/main/e/ethereal/ethereal_0.10.10-2sarge9_i386.deb Size/MD5 checksum: 443698 7693be67596d17632cf4723f8a54d047 http://security.debian.org/pool/updates/main/e/ethereal/ethereal-common_0.10.10-2sarge9_i386.deb Size/MD5 checksum: 4529248 0139a1d19b4957c004df779e38a24a59 http://security.debian.org/pool/updates/main/e/ethereal/ethereal-dev_0.10.10-2sarge9_i386.deb Size/MD5 checksum: 154592 9c0525063d401ee054b27ce38d634e33 http://security.debian.org/pool/updates/main/e/ethereal/tethereal_0.10.10-2sarge9_i386.deb Size/MD5 checksum: 90942 96abf559fb9430b1692d2d90a66ecc5c Intel IA-64 architecture: http://security.debian.org/pool/updates/main/e/ethereal/ethereal_0.10.10-2sarge9_ia64.deb Size/MD5 checksum: 674472 4abd34b813b05e024043da18bb3e402c http://security.debian.org/pool/updates/main/e/ethereal/ethereal-common_0.10.10-2sarge9_ia64.deb Size/MD5 checksum: 6630134 99f54db4831942d42296ab0a95342478 http://security.debian.org/pool/updates/main/e/ethereal/ethereal-dev_0.10.10-2sarge9_ia64.deb Size/MD5 checksum: 154594 97f03089c5a2f20ba38344f6cec55b30 http://security.debian.org/pool/updates/main/e/ethereal/tethereal_0.10.10-2sarge9_ia64.deb Size/MD5 checksum: 129198 1112f7607579fcd8b9ca08f71343f634 Motorola 680x0 architecture: http://security.debian.org/pool/updates/main/e/ethereal/ethereal_0.10.10-2sarge9_m68k.deb Size/MD5 checksum: 447802 232f5842aa0e6adb46d20a7bb185f96d http://security.debian.org/pool/updates/main/e/ethereal/ethereal-common_0.10.10-2sarge9_m68k.deb Size/MD5 checksum: 5565136 fb513962f4e20d66c623a73b5ee9e885 http://security.debian.org/pool/updates/main/e/ethereal/ethereal-dev_0.10.10-2sarge9_m68k.deb Size/MD5 checksum: 154662 a3b9b1d5863b3aa898f0cc99c1cd6698 http://security.debian.org/pool/updates/main/e/ethereal/tethereal_0.10.10-2sarge9_m68k.deb Size/MD5 checksum: 90952 dd7d57c87b84651cf379e89001605323 Big endian MIPS architecture: http://security.debian.org/pool/updates/main/e/ethereal/ethereal_0.10.10-2sarge9_mips.deb Size/MD5 checksum: 462804 d4684b24816cc54d47cfad4ce32bd0b5 http://security.debian.org/pool/updates/main/e/ethereal/ethereal-common_0.10.10-2sarge9_mips.deb Size/MD5 checksum: 4723362 7656bd956876056e532df9ecaec97471 http://security.debian.org/pool/updates/main/e/ethereal/ethereal-dev_0.10.10-2sarge9_mips.deb Size/MD5 checksum: 154588 8645620716b8d688475fd2ca631ab986 http://security.debian.org/pool/updates/main/e/ethereal/tethereal_0.10.10-2sarge9_mips.deb Size/MD5 checksum: 94788 40066b71cfc3a122453e130e537c2302 Little endian MIPS architecture: http://security.debian.org/pool/updates/main/e/ethereal/ethereal_0.10.10-2sarge9_mipsel.deb Size/MD5 checksum: 458076 1ac138ade7fd91253806ae4d8480154b http://security.debian.org/pool/updates/main/e/ethereal/ethereal-common_0.10.10-2sarge9_mipsel.deb Size/MD5 checksum: 4460986 7e9ca725df417dae65208e865ea329d6 http://security.debian.org/pool/updates/main/e/ethereal/ethereal-dev_0.10.10-2sarge9_mipsel.deb Size/MD5 checksum: 154606 ce8c4b32631676bc7817c3f4dfa5f6ca http://security.debian.org/pool/updates/main/e/ethereal/tethereal_0.10.10-2sarge9_mipsel.deb Size/MD5 checksum: 94696 d9525ded73ae609c0dc7672f1279626a PowerPC architecture: http://security.debian.org/pool/updates/main/e/ethereal/ethereal_0.10.10-2sarge9_powerpc.deb Size/MD5 checksum: 455752 8e5806f6f6a86f8b066c6366fbdaacfe http://security.debian.org/pool/updates/main/e/ethereal/ethereal-common_0.10.10-2sarge9_powerpc.deb Size/MD5 checksum: 5067972 c832d4ee9e201fffe698c4e5e8c064d6 http://security.debian.org/pool/updates/main/e/ethereal/ethereal-dev_0.10.10-2sarge9_powerpc.deb Size/MD5 checksum: 154602 ec05dd9cb9fda2cb532fc4a02b73870d http://security.debian.org/pool/updates/main/e/ethereal/tethereal_0.10.10-2sarge9_powerpc.deb Size/MD5 checksum: 94360 811445845ed5bc677c68597f4dc57553 IBM S/390 architecture: http://security.debian.org/pool/updates/main/e/ethereal/ethereal_0.10.10-2sarge9_s390.deb Size/MD5 checksum: 479716 1f9523a1563752c8b3f3ae3b77ee9e15 http://security.debian.org/pool/updates/main/e/ethereal/ethereal-common_0.10.10-2sarge9_s390.deb Size/MD5 checksum: 5621732 36e4ce1ddaf99edf598933bc8af19c7b http://security.debian.org/pool/updates/main/e/ethereal/ethereal-dev_0.10.10-2sarge9_s390.deb Size/MD5 checksum: 154590 5b08647010fc5275a27ded68e63d4859 http://security.debian.org/pool/updates/main/e/ethereal/tethereal_0.10.10-2sarge9_s390.deb Size/MD5 checksum: 99946 93cb4151f77499728d2734c64a04f8c2 These files will probably be moved into the stable distribution on its next update. - - --------------------------------------------------------------------------------- For apt-get: deb http://security.debian.org/ stable/updates main For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main Mailing list: debian-security-announce@lists.debian.org Package info: `apt-cache show <pkg>' and http://packages.debian.org/<pkg> - -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.5 (GNU/Linux) iD8DBQFFR65aXm3vHE4uyloRAu+UAJ4z2i/lBtyHIGvW+IBG9Iqk0FfQzgCgzIkk 0Akx6GvCGl26adECd0E0Yuk= =9l5z - -----END PGP SIGNATURE----- - --------------------------END INCLUDED TEXT-------------------- You have received this e-mail bulletin as a result of your organisation's registration with AusCERT. The mailing list you are subscribed to is maintained within your organisation, so if you do not wish to continue receiving these bulletins you should contact your local IT manager. If you do not know who that is, please send an email to auscert@auscert.org.au and we will forward your request to the appropriate person. NOTE: Third Party Rights This security bulletin is provided as a service to AusCERT's members. As AusCERT did not write the document quoted above, AusCERT has had no control over its content. The decision to follow or act on information or advice contained in this security bulletin is the responsibility of each user or organisation, and should be considered in accordance with your organisation's site policies and procedures. AusCERT takes no responsibility for consequences which may arise from following or acting on information or advice contained in this security bulletin. NOTE: This is only the original release of the security bulletin. It may not be updated when updates to the original are made. If downloading at a later date, it is recommended that the bulletin is retrieved directly from the author's website to ensure that the information is still current. Contact information for the authors of the original document is included in the Security Bulletin above. If you have any questions or need further information, please contact them directly. Previous advisories and external security bulletins can be retrieved from: http://www.auscert.org.au/render.html?cid=1980 If you believe that your computer system has been compromised or attacked in any way, we encourage you to let us know by completing the secure National IT Incident Reporting Form at: http://www.auscert.org.au/render.html?it=3192 =========================================================================== Australian Computer Emergency Response Team The University of Queensland Brisbane Qld 4072 Internet Email: auscert@auscert.org.au Facsimile: (07) 3365 7031 Telephone: (07) 3365 4417 (International: +61 7 3365 4417) AusCERT personnel answer during Queensland business hours which are GMT+10:00 (AEST). On call after hours for member emergencies only. =========================================================================== -----BEGIN PGP SIGNATURE----- Comment: http://www.auscert.org.au/render.html?it=1967 iQCVAwUBRUfhnSh9+71yA2DNAQKW5QP+I5uhGRdCSkXJP10DGjeBUlWJoOxMh6jZ upKZHzqDklj9UZvfOoBAM1tzJsRQEqb47J7jJERbrM72BYw+LqO5WO37rVr9uPUb 85dgxCfLJf2l1YnDjy2NVb/F0d0fg8dal3I6vsJHlJqfkelN9efK6kJIMF3n0ZbG gichOS61G2w= =aYXL -----END PGP SIGNATURE-----