安全研究
安全漏洞
Wireshark 0.99.6版本多个远程漏洞
发布日期:2007-11-22
更新日期:2008-01-03
受影响系统:
Wireshark Wireshark 0.8.16 - 0.99.6不受影响系统:
Wireshark Wireshark 0.99.7描述:
BUGTRAQ ID: 26532,27071
CVE(CAN) ID: CVE-2007-6111,CVE-2007-6112,CVE-2007-6113,CVE-2007-6114,CVE-2007-6115,CVE-2007-6116,CVE-2007-6117,CVE-2007-6118,CVE-2007-6119,CVE-2007-6120,CVE-2007-6121,CVE-2007-6438,CVE-2007-6439,CVE-2007-6441,CVE-2007-6450,CVE-2007-6451
Wireshark以前名为Ethereal,是一款非常流行的网络协议分析工具。
Wireshark的以下协议处理模块中存在多个死循环、内存耗尽、崩溃或缓冲区溢出漏洞:
* SSL、ANSI MAP、Firebird/Interbase、NCP、HTTP、MEGACO、DCP ETSI、PPP和蓝牙SDP处理模块
* 处理畸形的MP3或iSeries(OS/400)通讯追踪文件
* 处理畸形的DNP或RPC端口映射报文
如果Wireshark受骗从网络抓包或通过抓包文件解析了上述畸形报文的话,就会耗尽大量系统资源,或导致执行任意代码。
<*来源:Stefan Esser (s.esser@ematters.de)
Peter Leeming
链接:http://www.wireshark.org/security/wnpa-sec-2007-03.html
http://secunia.com/advisories/22590/
http://secunia.com/advisories/27777
http://www.debian.org/security/2007/dsa-1414
http://security.gentoo.org/glsa/glsa-200712-23.xml
http://www.debian.org/security/2008/dsa-1446
*>
建议:
临时解决方法:
如果您不能立刻安装补丁或者升级,NSFOCUS建议您采取以下措施以降低威胁:
* 禁用HTTP、DCP ETSI、SSL、DHCP/BOOTP和MMS处理模块。
厂商补丁:
Debian
------
Debian已经为此发布了一个安全公告(DSA-1414-1)以及相应补丁:
DSA-1414-1:New wireshark packages fix several vulnerabilities
链接:http://www.debian.org/security/2007/dsa-1414
补丁下载:
Source archives:
http://security.debian.org/pool/updates/main/e/ethereal/ethereal_0.10.10-2sarge10.dsc
Size/MD5 checksum: 857 13f70e9eb8c1e2fed6ddeabb44ac1d3a
http://security.debian.org/pool/updates/main/e/ethereal/ethereal_0.10.10-2sarge10.diff.gz
Size/MD5 checksum: 178414 82a9fb4100a52b10d70e6bc2dd46ba71
http://security.debian.org/pool/updates/main/e/ethereal/ethereal_0.10.10.orig.tar.gz
Size/MD5 checksum: 7411510 e6b74468412c17bb66cd459bfb61471c
alpha architecture (DEC Alpha)
http://security.debian.org/pool/updates/main/e/ethereal/ethereal-common_0.10.10-2sarge10_alpha.deb
Size/MD5 checksum: 5473208 67be7f7d2a830e1d67596be0a034acb7
http://security.debian.org/pool/updates/main/e/ethereal/ethereal_0.10.10-2sarge10_alpha.deb
Size/MD5 checksum: 543316 de8d2e0552b0597aa86909587f7fbdd4
http://security.debian.org/pool/updates/main/e/ethereal/ethereal-dev_0.10.10-2sarge10_alpha.deb
Size/MD5 checksum: 155344 d0f405c14922bf0947bcaba9f1e1b5b5
http://security.debian.org/pool/updates/main/e/ethereal/tethereal_0.10.10-2sarge10_alpha.deb
Size/MD5 checksum: 106564 9e173e76cfee54406243122f54fb8736
amd64 architecture (AMD x86_64 (AMD64))
http://security.debian.org/pool/updates/main/e/ethereal/ethereal_0.10.10-2sarge10_amd64.deb
Size/MD5 checksum: 486588 a01a55b5556b78c96edc8be6a03f6164
http://security.debian.org/pool/updates/main/e/ethereal/ethereal-common_0.10.10-2sarge10_amd64.deb
Size/MD5 checksum: 5334642 4c11f3efdd48b23115b5a06fa1a2cad4
http://security.debian.org/pool/updates/main/e/ethereal/tethereal_0.10.10-2sarge10_amd64.deb
Size/MD5 checksum: 99666 e5974fe4027fa34906e9a233cfe79d28
http://security.debian.org/pool/updates/main/e/ethereal/ethereal-dev_0.10.10-2sarge10_amd64.deb
Size/MD5 checksum: 154610 51ee5b66077bd1824f1c671627623288
arm architecture (ARM)
http://security.debian.org/pool/updates/main/e/ethereal/ethereal_0.10.10-2sarge10_arm.deb
Size/MD5 checksum: 472962 3243aa716b6a61aa5059ff40ad74d19c
http://security.debian.org/pool/updates/main/e/ethereal/ethereal-dev_0.10.10-2sarge10_arm.deb
Size/MD5 checksum: 155880 2543ccfdacd0ad69e87b58dda3eac422
http://security.debian.org/pool/updates/main/e/ethereal/tethereal_0.10.10-2sarge10_arm.deb
Size/MD5 checksum: 96354 ab073d35ef7816c489497a316bce3866
http://security.debian.org/pool/updates/main/e/ethereal/ethereal-common_0.10.10-2sarge10_arm.deb
Size/MD5 checksum: 4684296 861dae74eefe8efac4d3608046fb869a
hppa architecture (HP PA RISC)
http://security.debian.org/pool/updates/main/e/ethereal/ethereal_0.10.10-2sarge10_hppa.deb
Size/MD5 checksum: 489400 4cae5e9cf2847e646c3df2cafa491952
http://security.debian.org/pool/updates/main/e/ethereal/ethereal-common_0.10.10-2sarge10_hppa.deb
Size/MD5 checksum: 5787380 9c600f1e3bbaa39b2a5e4a799bbdb9fd
http://security.debian.org/pool/updates/main/e/ethereal/tethereal_0.10.10-2sarge10_hppa.deb
Size/MD5 checksum: 98554 866f8f5c39a42e11893b8292bcde21b6
http://security.debian.org/pool/updates/main/e/ethereal/ethereal-dev_0.10.10-2sarge10_hppa.deb
Size/MD5 checksum: 154624 33c6ef867a81e16d3b42b250baf1ab6a
i386 architecture (Intel ia32)
http://security.debian.org/pool/updates/main/e/ethereal/ethereal-dev_0.10.10-2sarge10_i386.deb
Size/MD5 checksum: 154588 82db1d1552a6ccf512f6f5ec2e8eed6f
http://security.debian.org/pool/updates/main/e/ethereal/ethereal_0.10.10-2sarge10_i386.deb
Size/MD5 checksum: 443758 56a43d004cf577cbf09f06b3990c1c23
http://security.debian.org/pool/updates/main/e/ethereal/ethereal-common_0.10.10-2sarge10_i386.deb
Size/MD5 checksum: 4529320 8ed21cc29d85ca22b07565e531357c59
http://security.debian.org/pool/updates/main/e/ethereal/tethereal_0.10.10-2sarge10_i386.deb
Size/MD5 checksum: 90984 36e28654888ed491c0afe8ca0942c1dc
ia64 architecture (Intel ia64)
http://security.debian.org/pool/updates/main/e/ethereal/ethereal-common_0.10.10-2sarge10_ia64.deb
Size/MD5 checksum: 6630094 3b4aee38a7f3149c3f2cb80271d3945b
http://security.debian.org/pool/updates/main/e/ethereal/tethereal_0.10.10-2sarge10_ia64.deb
Size/MD5 checksum: 129266 c60411c1b16b1b4823afe539ff6cc57b
http://security.debian.org/pool/updates/main/e/ethereal/ethereal_0.10.10-2sarge10_ia64.deb
Size/MD5 checksum: 674538 25dbd3438c8c4a82b7ad257101c670ac
http://security.debian.org/pool/updates/main/e/ethereal/ethereal-dev_0.10.10-2sarge10_ia64.deb
Size/MD5 checksum: 154596 6bd05ac93b14002e99478f3df87ea689
mips architecture (MIPS (Big Endian))
http://security.debian.org/pool/updates/main/e/ethereal/ethereal-common_0.10.10-2sarge10_mips.deb
Size/MD5 checksum: 4723420 846bf6114c51724ff12c0708d3e27f34
http://security.debian.org/pool/updates/main/e/ethereal/ethereal_0.10.10-2sarge10_mips.deb
Size/MD5 checksum: 462884 065921607b447f0a7077eab8e067e27c
http://security.debian.org/pool/updates/main/e/ethereal/ethereal-dev_0.10.10-2sarge10_mips.deb
Size/MD5 checksum: 154634 705ca5dbef162d627e0287662a680e2f
http://security.debian.org/pool/updates/main/e/ethereal/tethereal_0.10.10-2sarge10_mips.deb
Size/MD5 checksum: 94858 751305284a78ed0519919a66295346f3
mipsel architecture (MIPS (Little Endian))
http://security.debian.org/pool/updates/main/e/ethereal/ethereal_0.10.10-2sarge10_mipsel.deb
Size/MD5 checksum: 458148 92424b86e76671aa039fcebe522bbfc4
http://security.debian.org/pool/updates/main/e/ethereal/tethereal_0.10.10-2sarge10_mipsel.deb
Size/MD5 checksum: 94764 bc6bfe73e35bc3fde71f9fd38b5a7463
http://security.debian.org/pool/updates/main/e/ethereal/ethereal-common_0.10.10-2sarge10_mipsel.deb
Size/MD5 checksum: 4460978 8ead9a4793611f12ffca619198a8f844
http://security.debian.org/pool/updates/main/e/ethereal/ethereal-dev_0.10.10-2sarge10_mipsel.deb
Size/MD5 checksum: 154652 a94fccae248051cd70470c4a7e4b77ce
powerpc architecture (PowerPC)
http://security.debian.org/pool/updates/main/e/ethereal/ethereal-common_0.10.10-2sarge10_powerpc.deb
Size/MD5 checksum: 5067716 62f0be94422a471a622899f3f6f11e7c
http://security.debian.org/pool/updates/main/e/ethereal/ethereal-dev_0.10.10-2sarge10_powerpc.deb
Size/MD5 checksum: 154632 b6041c857bed2dbeeb49e21c890264eb
http://security.debian.org/pool/updates/main/e/ethereal/ethereal_0.10.10-2sarge10_powerpc.deb
Size/MD5 checksum: 455806 f6c9db48b4373d84daf858f8dfb275a2
http://security.debian.org/pool/updates/main/e/ethereal/tethereal_0.10.10-2sarge10_powerpc.deb
Size/MD5 checksum: 94406 23b71c5db6f0443ca3db0d072b4bb14b
s390 architecture (IBM S/390)
http://security.debian.org/pool/updates/main/e/ethereal/tethereal_0.10.10-2sarge10_s390.deb
Size/MD5 checksum: 99992 30d7eeb09507017a10c42e98f46e1d47
http://security.debian.org/pool/updates/main/e/ethereal/ethereal-dev_0.10.10-2sarge10_s390.deb
Size/MD5 checksum: 154572 29756abde9da24dac8254d128d44bd8d
http://security.debian.org/pool/updates/main/e/ethereal/ethereal_0.10.10-2sarge10_s390.deb
Size/MD5 checksum: 479760 c0d947771c2ad6b8f12e25812c1e7c5b
http://security.debian.org/pool/updates/main/e/ethereal/ethereal-common_0.10.10-2sarge10_s390.deb
Size/MD5 checksum: 5622238 7d86c0b58dc43c6bd84b88d27e3713c1
Debian (stable)
- ---------------
Stable updates are available for alpha, amd64, arm, hppa, i386, ia64, mips, mipsel, powerpc, s390 and sparc.
Source archives:
http://security.debian.org/pool/updates/main/w/wireshark/wireshark_0.99.4.orig.tar.gz
Size/MD5 checksum: 13306790 2556a31d0d770dd1990bd67b98bd2f9b
http://security.debian.org/pool/updates/main/w/wireshark/wireshark_0.99.4-5.etch.1.dsc
Size/MD5 checksum: 1066 12e8146f9cc10fe216e4d1a0a750037f
http://security.debian.org/pool/updates/main/w/wireshark/wireshark_0.99.4-5.etch.1.diff.gz
Size/MD5 checksum: 42799 61ed409b92000f30877799228daff252
alpha architecture (DEC Alpha)
http://security.debian.org/pool/updates/main/w/wireshark/tshark_0.99.4-5.etch.1_alpha.deb
Size/MD5 checksum: 117224 d85a0b7e63b0c953b6f152e185fba6a9
http://security.debian.org/pool/updates/main/w/wireshark/ethereal-common_0.99.4-5.etch.1_alpha.deb
Size/MD5 checksum: 22014 ad8ccffe577de4016acc15866f769829
http://security.debian.org/pool/updates/main/w/wireshark/wireshark-common_0.99.4-5.etch.1_alpha.deb
Size/MD5 checksum: 9319128 e75f6f5ee1d858b0fc2f9413ee415f5d
http://security.debian.org/pool/updates/main/w/wireshark/ethereal_0.99.4-5.etch.1_alpha.deb
Size/MD5 checksum: 21736 1c5d57697ebe337f34240c9dd342e3d8
http://security.debian.org/pool/updates/main/w/wireshark/wireshark-dev_0.99.4-5.etch.1_alpha.deb
Size/MD5 checksum: 181550 209f75537b0acc9c17b54e6b7cfdac2b
http://security.debian.org/pool/updates/main/w/wireshark/tethereal_0.99.4-5.etch.1_alpha.deb
Size/MD5 checksum: 21744 e9b9909b4528978a75d323d02389eff8
http://security.debian.org/pool/updates/main/w/wireshark/wireshark_0.99.4-5.etch.1_alpha.deb
Size/MD5 checksum: 674254 55b36078f6d6f9f278ff34ff67cae28d
http://security.debian.org/pool/updates/main/w/wireshark/ethereal-dev_0.99.4-5.etch.1_alpha.deb
Size/MD5 checksum: 21748 525cdcc7f345f729181fb9399ca84867
amd64 architecture (AMD x86_64 (AMD64))
http://security.debian.org/pool/updates/main/w/wireshark/ethereal_0.99.4-5.etch.1_amd64.deb
Size/MD5 checksum: 22342 2db8ccf0421954242c6b7352503e7cba
http://security.debian.org/pool/updates/main/w/wireshark/wireshark-common_0.99.4-5.etch.1_amd64.deb
Size/MD5 checksum: 9119562 ae17852ca0431cbb1b8fc6401c81aa21
http://security.debian.org/pool/updates/main/w/wireshark/ethereal-common_0.99.4-5.etch.1_amd64.deb
Size/MD5 checksum: 22704 aeb68a6daccbd9c1c6cb711f26e93296
http://security.debian.org/pool/updates/main/w/wireshark/tshark_0.99.4-5.etch.1_amd64.deb
Size/MD5 checksum: 111974 010a55a4127333689fa8416d6214ec94
http://security.debian.org/pool/updates/main/w/wireshark/tethereal_0.99.4-5.etch.1_amd64.deb
Size/MD5 checksum: 22352 cb17e51ae331c059ee2e2c2a71f4aa49
http://security.debian.org/pool/updates/main/w/wireshark/ethereal-dev_0.99.4-5.etch.1_amd64.deb
Size/MD5 checksum: 22360 5ee1e412767f67919ce51d0b534394a8
http://security.debian.org/pool/updates/main/w/wireshark/wireshark-dev_0.99.4-5.etch.1_amd64.deb
Size/MD5 checksum: 181590 44888c58cf54dc4329a30f55c4990d95
http://security.debian.org/pool/updates/main/w/wireshark/wireshark_0.99.4-5.etch.1_amd64.deb
Size/MD5 checksum: 619562 efa93cc7f881dba55c9b5b7cc8cb6e1a
arm architecture (ARM)
http://security.debian.org/pool/updates/main/w/wireshark/ethereal_0.99.4-5.etch.1_arm.deb
Size/MD5 checksum: 22356 4c49ab66e1e2706808ea9697f72ecfb7
http://security.debian.org/pool/updates/main/w/wireshark/tshark_0.99.4-5.etch.1_arm.deb
Size/MD5 checksum: 107198 8a5a6b4ea6cc4e3ab657f31aa1d4e6dc
http://security.debian.org/pool/updates/main/w/wireshark/ethereal-common_0.99.4-5.etch.1_arm.deb
Size/MD5 checksum: 22714 0544f54d45e84847e71381a7d43f0003
http://security.debian.org/pool/updates/main/w/wireshark/ethereal-dev_0.99.4-5.etch.1_arm.deb
Size/MD5 checksum: 22372 be24fc579f74dd24836a9371066a7b79
http://security.debian.org/pool/updates/main/w/wireshark/tethereal_0.99.4-5.etch.1_arm.deb
Size/MD5 checksum: 22364 d891953d3c4904a3dc4c30408b90d81c
http://security.debian.org/pool/updates/main/w/wireshark/wireshark-common_0.99.4-5.etch.1_arm.deb
Size/MD5 checksum: 7739170 f8d2410802c8f03b68f27d9e07a5f962
http://security.debian.org/pool/updates/main/w/wireshark/wireshark_0.99.4-5.etch.1_arm.deb
Size/MD5 checksum: 600424 cbd6182358b03954f5026bd971073a8c
http://security.debian.org/pool/updates/main/w/wireshark/wireshark-dev_0.99.4-5.etch.1_arm.deb
Size/MD5 checksum: 181894 76286939d57837fefaa8c0ec3d535eee
hppa architecture (HP PA RISC)
http://security.debian.org/pool/updates/main/w/wireshark/wireshark_0.99.4-5.etch.1_hppa.deb
Size/MD5 checksum: 634494 6be054401a1db64c84e61c1260d01fb6
http://security.debian.org/pool/updates/main/w/wireshark/ethereal-common_0.99.4-5.etch.1_hppa.deb
Size/MD5 checksum: 22696 be88e7f598274dc6161c8ec6b94c30e7
http://security.debian.org/pool/updates/main/w/wireshark/tshark_0.99.4-5.etch.1_hppa.deb
Size/MD5 checksum: 109690 97e0c2d2f877d6bc5eb2d766309c01f4
http://security.debian.org/pool/updates/main/w/wireshark/wireshark-dev_0.99.4-5.etch.1_hppa.deb
Size/MD5 checksum: 182482 e075af8dcb3d7a13fca3828de39fd3d9
http://security.debian.org/pool/updates/main/w/wireshark/tethereal_0.99.4-5.etch.1_hppa.deb
Size/MD5 checksum: 22348 866c000ad64e3376d0d9320805119728
http://security.debian.org/pool/updates/main/w/wireshark/ethereal-dev_0.99.4-5.etch.1_hppa.deb
Size/MD5 checksum: 22356 cfcbb7502fdc4020b9aad33f67beb665
http://security.debian.org/pool/updates/main/w/wireshark/wireshark-common_0.99.4-5.etch.1_hppa.deb
Size/MD5 checksum: 9854626 d36c3a094773a6c812ec0b4e3dc010c9
http://security.debian.org/pool/updates/main/w/wireshark/ethereal_0.99.4-5.etch.1_hppa.deb
Size/MD5 checksum: 22340 45fc4629c3fc77e7987f2179ddfa24be
i386 architecture (Intel ia32)
http://security.debian.org/pool/updates/main/w/wireshark/wireshark_0.99.4-5.etch.1_i386.deb
Size/MD5 checksum: 564526 4b8eb4fb7d8f606ed1789c8df2cb039a
http://security.debian.org/pool/updates/main/w/wireshark/wireshark-common_0.99.4-5.etch.1_i386.deb
Size/MD5 checksum: 7501872 cbdc35a89f36b126c89b478452736cc6
http://security.debian.org/pool/updates/main/w/wireshark/tshark_0.99.4-5.etch.1_i386.deb
Size/MD5 checksum: 102150 59cf091877d995796a33b6482ac413ea
http://security.debian.org/pool/updates/main/w/wireshark/tethereal_0.99.4-5.etch.1_i386.deb
Size/MD5 checksum: 22344 e9e76892435a11ab9f504f044893331d
http://security.debian.org/pool/updates/main/w/wireshark/ethereal-dev_0.99.4-5.etch.1_i386.deb
Size/MD5 checksum: 22354 6c8610eef3cdb923a5848c3c6e31d0fe
http://security.debian.org/pool/updates/main/w/wireshark/ethereal-common_0.99.4-5.etch.1_i386.deb
Size/MD5 checksum: 22698 b2ff8d7600e250a50459ddc964f7dbdf
http://security.debian.org/pool/updates/main/w/wireshark/ethereal_0.99.4-5.etch.1_i386.deb
Size/MD5 checksum: 22336 b1aad678b3ddf89bf94759f9f3858fe4
http://security.debian.org/pool/updates/main/w/wireshark/wireshark-dev_0.99.4-5.etch.1_i386.deb
Size/MD5 checksum: 182520 a3d50d0da284264b733f40ee7febd08f
ia64 architecture (Intel ia64)
http://security.debian.org/pool/updates/main/w/wireshark/wireshark-dev_0.99.4-5.etch.1_ia64.deb
Size/MD5 checksum: 182478 17b94fb0f374818cdd5ff7fffb814e3c
http://security.debian.org/pool/updates/main/w/wireshark/wireshark-common_0.99.4-5.etch.1_ia64.deb
Size/MD5 checksum: 10650318 867330a74271726f25ec7cb437881675
http://security.debian.org/pool/updates/main/w/wireshark/tshark_0.99.4-5.etch.1_ia64.deb
Size/MD5 checksum: 145608 712a2349fd200a7d786416ed2e90b888
http://security.debian.org/pool/updates/main/w/wireshark/ethereal-dev_0.99.4-5.etch.1_ia64.deb
Size/MD5 checksum: 22350 db12f448877fa43dc8d16cf9f1bc0e76
http://security.debian.org/pool/updates/main/w/wireshark/ethereal_0.99.4-5.etch.1_ia64.deb
Size/MD5 checksum: 22336 eab2d2ff1a049de7b0c350df34c49c6b
http://security.debian.org/pool/updates/main/w/wireshark/tethereal_0.99.4-5.etch.1_ia64.deb
Size/MD5 checksum: 22344 4eebff3e87f1ef9410592a749c3d2542
http://security.debian.org/pool/updates/main/w/wireshark/wireshark_0.99.4-5.etch.1_ia64.deb
Size/MD5 checksum: 827424 0b3cf3ee033095dc2b77b5e4c7a031fb
http://security.debian.org/pool/updates/main/w/wireshark/ethereal-common_0.99.4-5.etch.1_ia64.deb
Size/MD5 checksum: 22690 c5c429e114db82106e54b6b850eee18b
mips architecture (MIPS (Big Endian))
http://security.debian.org/pool/updates/main/w/wireshark/ethereal_0.99.4-5.etch.1_mips.deb
Size/MD5 checksum: 22338 0959e956ec8a654df5783d41f25fe097
http://security.debian.org/pool/updates/main/w/wireshark/wireshark-common_0.99.4-5.etch.1_mips.deb
Size/MD5 checksum: 8025014 79b62949c040c67c4bcab05f54b140a4
http://security.debian.org/pool/updates/main/w/wireshark/ethereal-common_0.99.4-5.etch.1_mips.deb
Size/MD5 checksum: 22692 473b7ab46163aa2eec6fc283d4d8b326
http://security.debian.org/pool/updates/main/w/wireshark/ethereal-dev_0.99.4-5.etch.1_mips.deb
Size/MD5 checksum: 22354 93832d797079af2c7ed673eb8605ad08
http://security.debian.org/pool/updates/main/w/wireshark/wireshark-dev_0.99.4-5.etch.1_mips.deb
Size/MD5 checksum: 182502 abb2e923e897c8e5737a3304ff879ed7
http://security.debian.org/pool/updates/main/w/wireshark/tshark_0.99.4-5.etch.1_mips.deb
Size/MD5 checksum: 104892 7e25d3d517b0eb9ced49791660866358
http://security.debian.org/pool/updates/main/w/wireshark/wireshark_0.99.4-5.etch.1_mips.deb
Size/MD5 checksum: 588506 fed1a6a3a87b13a2cf706849b1cfab8b
http://security.debian.org/pool/updates/main/w/wireshark/tethereal_0.99.4-5.etch.1_mips.deb
Size/MD5 checksum: 22350 b1d818602719192cd5438c849b31ed4d
mipsel architecture (MIPS (Little Endian))
http://security.debian.org/pool/updates/main/w/wireshark/ethereal_0.99.4-5.etch.1_mipsel.deb
Size/MD5 checksum: 22338 d7abb1c1005e8c57f6d9e9d74a32a8fa
http://security.debian.org/pool/updates/main/w/wireshark/tshark_0.99.4-5.etch.1_mipsel.deb
Size/MD5 checksum: 104400 ca6d57ab13113dbaa3887a15dd65b6ea
http://security.debian.org/pool/updates/main/w/wireshark/wireshark_0.99.4-5.etch.1_mipsel.deb
Size/MD5 checksum: 575842 47be3916d499a906a4fe36b57c0cd17b
http://security.debian.org/pool/updates/main/w/wireshark/ethereal-common_0.99.4-5.etch.1_mipsel.deb
Size/MD5 checksum: 22690 910a891b06d9a04be03c69b70ae9cc9a
http://security.debian.org/pool/updates/main/w/wireshark/wireshark-common_0.99.4-5.etch.1_mipsel.deb
Size/MD5 checksum: 7406172 1385d56073bbd6ed2cfe42b1184937ac
http://security.debian.org/pool/updates/main/w/wireshark/tethereal_0.99.4-5.etch.1_mipsel.deb
Size/MD5 checksum: 22350 97e7d6303d485700ea905521a4e46a6f
http://security.debian.org/pool/updates/main/w/wireshark/ethereal-dev_0.99.4-5.etch.1_mipsel.deb
Size/MD5 checksum: 22358 9d188ba3e2989713f6eb406a56602588
http://security.debian.org/pool/updates/main/w/wireshark/wireshark-dev_0.99.4-5.etch.1_mipsel.deb
Size/MD5 checksum: 182486 28a53abb380114393defbff0ec50df65
powerpc architecture (PowerPC)
http://security.debian.org/pool/updates/main/w/wireshark/ethereal-common_0.99.4-5.etch.1_powerpc.deb
Size/MD5 checksum: 22692 2f49b7a64f01b0a1037b61c36a015ed3
http://security.debian.org/pool/updates/main/w/wireshark/tshark_0.99.4-5.etch.1_powerpc.deb
Size/MD5 checksum: 104106 3418723376cbb0c3c18570ff68799836
http://security.debian.org/pool/updates/main/w/wireshark/ethereal_0.99.4-5.etch.1_powerpc.deb
Size/MD5 checksum: 22338 99363115fa0dd4224dda0bc0e2e4762b
http://security.debian.org/pool/updates/main/w/wireshark/wireshark-dev_0.99.4-5.etch.1_powerpc.deb
Size/MD5 checksum: 182508 32eeaf5941336b48467accf6d14ea9ce
http://security.debian.org/pool/updates/main/w/wireshark/wireshark_0.99.4-5.etch.1_powerpc.deb
Size/MD5 checksum: 583462 dc78a9149389f6bc886a0211247e3539
http://security.debian.org/pool/updates/main/w/wireshark/tethereal_0.99.4-5.etch.1_powerpc.deb
Size/MD5 checksum: 22352 47332c4cbce63f538b5b9d4f610b0a24
http://security.debian.org/pool/updates/main/w/wireshark/ethereal-dev_0.99.4-5.etch.1_powerpc.deb
Size/MD5 checksum: 22356 38c932a69d2a5ef6ba577d82b1b16857
http://security.debian.org/pool/updates/main/w/wireshark/wireshark-common_0.99.4-5.etch.1_powerpc.deb
Size/MD5 checksum: 8605364 a431421901f9019bff4ce868f4e46c40
s390 architecture (IBM S/390)
http://security.debian.org/pool/updates/main/w/wireshark/ethereal-common_0.99.4-5.etch.1_s390.deb
Size/MD5 checksum: 22694 fa6f3fc7a39dc1b8b6030452488bf12a
http://security.debian.org/pool/updates/main/w/wireshark/ethereal_0.99.4-5.etch.1_s390.deb
Size/MD5 checksum: 22334 9c6cd498668d092e4b9794c40356466f
http://security.debian.org/pool/updates/main/w/wireshark/wireshark-common_0.99.4-5.etch.1_s390.deb
Size/MD5 checksum: 9755928 444aa912362bae9470537dd497bd60a3
http://security.debian.org/pool/updates/main/w/wireshark/tethereal_0.99.4-5.etch.1_s390.deb
Size/MD5 checksum: 22338 24797312504679250cdd8b893e0996d4
http://security.debian.org/pool/updates/main/w/wireshark/wireshark-dev_0.99.4-5.etch.1_s390.deb
Size/MD5 checksum: 182454 fe98e9d9ad70ceb84d66657815bd6778
http://security.debian.org/pool/updates/main/w/wireshark/wireshark_0.99.4-5.etch.1_s390.deb
Size/MD5 checksum: 640886 c4eb7212909a6ad41cb1becf8bfe3656
http://security.debian.org/pool/updates/main/w/wireshark/tshark_0.99.4-5.etch.1_s390.deb
Size/MD5 checksum: 115478 7761780c7281fd5d3c488fc16df95a1e
http://security.debian.org/pool/updates/main/w/wireshark/ethereal-dev_0.99.4-5.etch.1_s390.deb
Size/MD5 checksum: 22354 75e8c12f8e5530ce95fdcbea118ec269
补丁安装方法:
1. 手工安装补丁包:
首先,使用下面的命令来下载补丁软件:
# wget url (url是补丁下载链接地址)
然后,使用下面的命令来安装补丁:
# dpkg -i file.deb (file是相应的补丁名)
2. 使用apt-get自动安装补丁包:
首先,使用下面的命令更新内部数据库:
# apt-get update
然后,使用下面的命令安装更新软件包:
# apt-get upgrade
Gentoo
------
Gentoo已经为此发布了一个安全公告(GLSA 200712-23)以及相应补丁:
GLSA 200712-23:Wireshark: Multiple vulnerabilities
链接:http://security.gentoo.org/glsa/glsa-200712-23.xml
所有Wireshark用户都应升级到最新版本:
# emerge --sync
# emerge --ask --oneshot --verbose ">=net-analyzer/wireshark-0.99.7"
Wireshark
---------
目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:
http://www.wireshark.org/
浏览次数:4108
严重程度:0(网友投票)
绿盟科技给您安全的保障