VULHUB ™

Wireshark是一款非常流行的网络协议分析工具,以前名为Ethereal，。 Wireshark中存在多个安全漏洞，具体如下： 1) SCSI协议处理单元中的漏洞可能导致应用程序崩溃； 2) 如果编译了ESP解密支持的话，IPSec ESP偏好解析器中就会存在单字节缓冲区溢出漏洞； 3) 由于Glib中的一个bug，DHCP协议处理单元中的漏洞可能导致Wireshark崩溃。这个漏洞仅影响Windows版本； 4) Q.2391协议处理单元中的漏洞可能导致耗尽内存。 受影响系统： Wireshark Wireshark 0.7.9 - 0.99.2 不受影响系统： Wireshark Wireshark 0.99.3 临时解决方法： * 禁用SCSI和Q.2931协议处理单元。如果在Windows下运行Wireshark的话，禁用DHCP处理单元。 * 如果所使用的Wireshark版本编译了ESP加密，请禁用。 厂商补丁： Debian ------ Debian已经为此发布了一个安全公告（DSA-1171-1）以及相应补丁: DSA-1171-1：New ethereal packages fix execution of arbitrary code 链接：http://www.debian.org/security/2005/dsa-1171 补丁下载： Source archives: http://security.debian.org/pool/updates/main/e/ethereal/ethereal_0.10.10-2sarge8.dsc Size/MD5 checksum: 855 159309d848ffa90cb5ae336582a8e7d4 http://security.debian.org/pool/updates/main/e/ethereal/ethereal_0.10.10.orig.tar.gz Size/MD5 checksum: 7411510 e6b74468412c17bb66cd459bfb61471c http://security.debian.org/pool/updates/main/e/ethereal/ethereal_0.10.10-2sarge8.diff.gz Size/MD5...

Wireshark是一款非常流行的网络协议分析工具,以前名为Ethereal，。 Wireshark中存在多个安全漏洞，具体如下： 1) SCSI协议处理单元中的漏洞可能导致应用程序崩溃； 2) 如果编译了ESP解密支持的话，IPSec ESP偏好解析器中就会存在单字节缓冲区溢出漏洞； 3) 由于Glib中的一个bug，DHCP协议处理单元中的漏洞可能导致Wireshark崩溃。这个漏洞仅影响Windows版本； 4) Q.2391协议处理单元中的漏洞可能导致耗尽内存。 受影响系统： Wireshark Wireshark 0.7.9 - 0.99.2 不受影响系统： Wireshark Wireshark 0.99.3 临时解决方法： * 禁用SCSI和Q.2931协议处理单元。如果在Windows下运行Wireshark的话，禁用DHCP处理单元。 * 如果所使用的Wireshark版本编译了ESP加密，请禁用。 厂商补丁： Debian ------ Debian已经为此发布了一个安全公告（DSA-1171-1）以及相应补丁: DSA-1171-1：New ethereal packages fix execution of arbitrary code 链接：http://www.debian.org/security/2005/dsa-1171 补丁下载： Source archives: http://security.debian.org/pool/updates/main/e/ethereal/ethereal_0.10.10-2sarge8.dsc Size/MD5 checksum: 855 159309d848ffa90cb5ae336582a8e7d4 http://security.debian.org/pool/updates/main/e/ethereal/ethereal_0.10.10.orig.tar.gz Size/MD5 checksum: 7411510 e6b74468412c17bb66cd459bfb61471c http://security.debian.org/pool/updates/main/e/ethereal/ethereal_0.10.10-2sarge8.diff.gz Size/MD5 checksum: 177921 ee1ce43eb48106f1fc0b75bc9ff3c241 alpha architecture (DEC Alpha) http://security.debian.org/pool/updates/main/e/ethereal/ethereal-common_0.10.10-2sarge8_alpha.deb Size/MD5 checksum: 5476146 cf5b01f923e68a3f07d0080ef69f2b57 http://security.debian.org/pool/updates/main/e/ethereal/ethereal-dev_0.10.10-2sarge8_alpha.deb Size/MD5 checksum: 154566 615069b5905d6c2aec9a357eb0dd1306 http://security.debian.org/pool/updates/main/e/ethereal/tethereal_0.10.10-2sarge8_alpha.deb Size/MD5 checksum: 106250 cfe9461049fc5e1997d68cbd1a6d6b78 http://security.debian.org/pool/updates/main/e/ethereal/ethereal_0.10.10-2sarge8_alpha.deb Size/MD5 checksum: 543034 5c9eaadae44224a002902c4196847aa0 amd64 architecture (AMD x86_64 (AMD64)) http://security.debian.org/pool/updates/main/e/ethereal/ethereal-dev_0.10.10-2sarge8_amd64.deb Size/MD5 checksum: 154556 67cfc697c120e54c489e1552b1a58b6e http://security.debian.org/pool/updates/main/e/ethereal/tethereal_0.10.10-2sarge8_amd64.deb Size/MD5 checksum: 99542 09093de7c28ec1741106dac694ffcae3 http://security.debian.org/pool/updates/main/e/ethereal/ethereal_0.10.10-2sarge8_amd64.deb Size/MD5 checksum: 486502 addeab1c3d70537c088574f9f68e6e6d http://security.debian.org/pool/updates/main/e/ethereal/ethereal-common_0.10.10-2sarge8_amd64.deb Size/MD5 checksum: 5334616 1700b3e18c2b45594cbb80ef2ea58019 arm architecture (ARM) http://security.debian.org/pool/updates/main/e/ethereal/tethereal_0.10.10-2sarge8_arm.deb Size/MD5 checksum: 95616 39dbfe3ac08048f95b19d74c644b780c http://security.debian.org/pool/updates/main/e/ethereal/ethereal-dev_0.10.10-2sarge8_arm.deb Size/MD5 checksum: 154596 209d45b3ebf7ba313bb7db0c00a095bd http://security.debian.org/pool/updates/main/e/ethereal/ethereal_0.10.10-2sarge8_arm.deb Size/MD5 checksum: 472996 5f0d04db811734c1f1c8c814c93ceaaa http://security.debian.org/pool/updates/main/e/ethereal/ethereal-common_0.10.10-2sarge8_arm.deb Size/MD5 checksum: 4687892 5b2737d93a7e3673630e96744f648b51 hppa architecture (HP PA RISC) http://security.debian.org/pool/updates/main/e/ethereal/ethereal-common_0.10.10-2sarge8_hppa.deb Size/MD5 checksum: 5787290 f36dc8ae6a78acb2d6a8fa71b18af9cc http://security.debian.org/pool/updates/main/e/ethereal/ethereal-dev_0.10.10-2sarge8_hppa.deb Size/MD5 checksum: 154576 5ce456fee2af8fb5b4f19d786166faf6 http://security.debian.org/pool/updates/main/e/ethereal/ethereal_0.10.10-2sarge8_hppa.deb Size/MD5 checksum: 489292 71832119d10ab77eb4547840cf7d3504 http://security.debian.org/pool/updates/main/e/ethereal/tethereal_0.10.10-2sarge8_hppa.deb Size/MD5 checksum: 98452 94aae2f351900a65edfddcae9e880bf6 i386 architecture (Intel ia32) http://security.debian.org/pool/updates/main/e/ethereal/ethereal_0.10.10-2sarge8_i386.deb Size/MD5 checksum: 443646 f830051bf5920e2999a8ef9bab332ed2 http://security.debian.org/pool/updates/main/e/ethereal/ethereal-common_0.10.10-2sarge8_i386.deb Size/MD5 checksum: 4529156 4f6c8ec5448ea7b6aa826fce639a5781 http://security.debian.org/pool/updates/main/e/ethereal/tethereal_0.10.10-2sarge8_i386.deb Size/MD5 checksum: 90878 45f09d9fe820e537fd9e140fbe86de07 http://security.debian.org/pool/updates/main/e/ethereal/ethereal-dev_0.10.10-2sarge8_i386.deb Size/MD5 checksum: 154556 a1a78549f0981eb9aa0f77fdd9ce612b ia64 architecture (Intel ia64) http://security.debian.org/pool/updates/main/e/ethereal/ethereal-common_0.10.10-2sarge8_ia64.deb Size/MD5 checksum: 6630098 82fc3ba6dd822ee192c2050dc6f38dcf http://security.debian.org/pool/updates/main/e/ethereal/ethereal_0.10.10-2sarge8_ia64.deb Size/MD5 checksum: 674420 9b84646b4f81e1c9415656768f6dc687 http://security.debian.org/pool/updates/main/e/ethereal/tethereal_0.10.10-2sarge8_ia64.deb Size/MD5 checksum: 129156 c3deca896916d3a3d1c1065f5e2717c8 http://security.debian.org/pool/updates/main/e/ethereal/ethereal-dev_0.10.10-2sarge8_ia64.deb Size/MD5 checksum: 154554 e8a6435b4e1287af4ebfe3cb606c74af m68k architecture (Motorola Mc680x0) http://security.debian.org/pool/updates/main/e/ethereal/tethereal_0.10.10-2sarge8_m68k.deb Size/MD5 checksum: 90904 ab21fa89ad4a12f8e0c579872a1c07c4 http://security.debian.org/pool/updates/main/e/ethereal/ethereal-dev_0.10.10-2sarge8_m68k.deb Size/MD5 checksum: 154614 b384ae036ab5c2b85f62af368b689a04 http://security.debian.org/pool/updates/main/e/ethereal/ethereal_0.10.10-2sarge8_m68k.deb Size/MD5 checksum: 447752 6a8378ecb8337071ef8b1199529700be http://security.debian.org/pool/updates/main/e/ethereal/ethereal-common_0.10.10-2sarge8_m68k.deb Size/MD5 checksum: 5565186 647220c660fd8546c9ca4a18e9d7a792 mips architecture (MIPS (Big Endian)) http://security.debian.org/pool/updates/main/e/ethereal/ethereal-dev_0.10.10-2sarge8_mips.deb Size/MD5 checksum: 154572 434928f40a6b3e4bf2d7dce6beb72edb http://security.debian.org/pool/updates/main/e/ethereal/tethereal_0.10.10-2sarge8_mips.deb Size/MD5 checksum: 94736 4eb62077c31de2ac2ec10a760199b9eb http://security.debian.org/pool/updates/main/e/ethereal/ethereal-common_0.10.10-2sarge8_mips.deb Size/MD5 checksum: 4723218 9c827aab812bef7a58d5429ee8287d74 http://security.debian.org/pool/updates/main/e/ethereal/ethereal_0.10.10-2sarge8_mips.deb Size/MD5 checksum: 462746 fa7d8236f1407836dcc601317afa8df2 mipsel architecture (MIPS (Little Endian)) http://security.debian.org/pool/updates/main/e/ethereal/tethereal_0.10.10-2sarge8_mipsel.deb Size/MD5 checksum: 94650 7f64290882d7c8c579818fdc1c7e215b http://security.debian.org/pool/updates/main/e/ethereal/ethereal-dev_0.10.10-2sarge8_mipsel.deb Size/MD5 checksum: 154584 934dc675944e857216c72fc29ec46a55 http://security.debian.org/pool/updates/main/e/ethereal/ethereal_0.10.10-2sarge8_mipsel.deb Size/MD5 checksum: 458030 487ea6f3a1fd7620b4ae33f4d5e8c8c3 http://security.debian.org/pool/updates/main/e/ethereal/ethereal-common_0.10.10-2sarge8_mipsel.deb Size/MD5 checksum: 4460700 e0062d687a84b9782e645b0d72cbb248 powerpc architecture (PowerPC) http://security.debian.org/pool/updates/main/e/ethereal/ethereal_0.10.10-2sarge8_powerpc.deb Size/MD5 checksum: 455716 a203882270b251513b2269b688d59256 http://security.debian.org/pool/updates/main/e/ethereal/ethereal-common_0.10.10-2sarge8_powerpc.deb Size/MD5 checksum: 5068470 7976f110d32b6bb83c00afa49fd75493 http://security.debian.org/pool/updates/main/e/ethereal/ethereal-dev_0.10.10-2sarge8_powerpc.deb Size/MD5 checksum: 154570 7622c3b6ca781d622cb305e9a485f447 http://security.debian.org/pool/updates/main/e/ethereal/tethereal_0.10.10-2sarge8_powerpc.deb Size/MD5 checksum: 94320 5e5391b1f1dc2bc4992582930e28f2a3 s390 architecture (IBM S/390) http://security.debian.org/pool/updates/main/e/ethereal/ethereal-common_0.10.10-2sarge8_s390.deb Size/MD5 checksum: 5621642 092cf076ce4e6fd479ea09fdb14d6e87 http://security.debian.org/pool/updates/main/e/ethereal/ethereal-dev_0.10.10-2sarge8_s390.deb Size/MD5 checksum: 154566 f3dae98783c87fb3ff088be62608aef7 http://security.debian.org/pool/updates/main/e/ethereal/ethereal_0.10.10-2sarge8_s390.deb Size/MD5 checksum: 479662 e4b854e30aa801eb67a33d1077eb1e9b http://security.debian.org/pool/updates/main/e/ethereal/tethereal_0.10.10-2sarge8_s390.deb Size/MD5 checksum: 99904 0516f4694b47ae4637b09e82d321eecc sparc architecture (Sun SPARC/UltraSPARC) http://security.debian.org/pool/updates/main/e/ethereal/ethereal-common_0.10.10-2sarge8_sparc.deb Size/MD5 checksum: 5130234 44a97eeb06a2d82bbbcfba2712700792 http://security.debian.org/pool/updates/main/e/ethereal/tethereal_0.10.10-2sarge8_sparc.deb Size/MD5 checksum: 93828 4f44e9be92792058641044db66993758 http://security.debian.org/pool/updates/main/e/ethereal/ethereal_0.10.10-2sarge8_sparc.deb Size/MD5 checksum: 465390 42670783f2750c3d5f426fe76bd17696 http://security.debian.org/pool/updates/main/e/ethereal/ethereal-dev_0.10.10-2sarge8_sparc.deb Size/MD5 checksum: 154566 6f25990f50443c48e802e29881ddc3ff 补丁安装方法： 1. 手工安装补丁包： 首先，使用下面的命令来下载补丁软件： # wget url (url是补丁下载链接地址) 然后，使用下面的命令来安装补丁： # dpkg -i file.deb (file是相应的补丁名) 2. 使用apt-get自动安装补丁包： 首先，使用下面的命令更新内部数据库： # apt-get update 然后，使用下面的命令安装更新软件包： # apt-get upgrade Wireshark --------- 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载： http://www.wireshark.org/