ALAS-2017-813

Amazon Linux 1 (EOL) Security Advisory: ALAS-2017-813
Advisory Released Date: 2017-04-04
Advisory Updated Date: 2017-04-04

Severity: Medium

References: CVE-2013-4075 CVE-2015-3811 CVE-2015-3812 CVE-2015-3813
FAQs regarding Amazon Linux ALAS/CVE Severity

Issue Overview:

Several denial of service flaws were found in Wireshark. Wireshark could crash or stop responding if it read a malformed packet off a network, or opened a malicious dump file.

Affected Packages:

wireshark

Issue Correction:
Run yum update wireshark or yum update --advisory ALAS-2017-813 to update your system.

New Packages:

i686:
    wireshark-1.8.10-25.22.amzn1.i686
    wireshark-debuginfo-1.8.10-25.22.amzn1.i686
    wireshark-devel-1.8.10-25.22.amzn1.i686

src:
    wireshark-1.8.10-25.22.amzn1.src

x86_64:
    wireshark-debuginfo-1.8.10-25.22.amzn1.x86_64
    wireshark-devel-1.8.10-25.22.amzn1.x86_64
    wireshark-1.8.10-25.22.amzn1.x86_64

Additional References

Red Hat: CVE-2013-4075, CVE-2015-3811, CVE-2015-3812, CVE-2015-3813

Mitre: CVE-2013-4075, CVE-2015-3811, CVE-2015-3812, CVE-2015-3813