17071 – new version of ethereal (0.9.10) with security fixes.

Bug 17071 - new version of ethereal (0.9.10) with security fixes.

Summary: new version of ethereal (0.9.10) with security fixes.

Status:	RESOLVED FIXED

Alias:	None

Product:	Gentoo Linux
Classification:	Unclassified
Component:	Current packages (show other bugs)
Hardware:	All Linux

Importance:	High critical (vote)
Assignee:	Gentoo Security

URL:	http://www.ethereal.com/
Whiteboard:
Keywords:

Depends on:
Blocks:

Reported:	2003-03-08 01:25 UTC by Mr. Bones. (RETIRED)
Modified:	2003-03-09 15:41 UTC (History)
CC List:	0 users

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Mr. Bones. (RETIRED) gentoo-dev

2003-03-08 01:25:00 UTC

From the web site:
 
This release fixes a security hole discovered by Georgi Guninski in the SOCKS 
dissector as well as problems with the NTLMSSP and Rsync code. All users of 
previous versions are encouraged to upgrade. See the application advisory  for 
more details. 

Reproducible: Always
Steps to Reproduce:

Comment 1 Mr. Bones. (RETIRED) gentoo-dev

2003-03-08 01:28:36 UTC

the advisory is at:

http://www.ethereal.com/appnotes/enpa-sa-00008.html

Comment 2 Daniel Ahlberg (RETIRED) gentoo-dev

2003-03-09 15:41:30 UTC

glsa sent