for the remote execution of arbitrary code, or Denial of Service.
Background
==========
Wireshark is a versatile network protocol analyzer.
Affected packages
=================
-------------------------------------------------------------------
Multiple vulnerabilities were found in Wireshark.
Background
==========
Wireshark is a versatile network protocol analyzer.
Affected packages
=================
-------------------------------------------------------------------
It was discovered that KVM did not correctly initialize certain CPU
registers. A local attacker could exploit this to crash the system, leading
to a denial of service. (CVE-2010-3698)
Thomas Pollet discovered that the RDS network protocol did not check
certain iovec buffers. A local attacker could exploit this to crash the
system or possibly execute arbitrary code as the root user. (CVE-2010-3865)
Vasiliy Kulikov discovered that the Linux kernel X.25 implementation did
not correctly clear kernel memory. A local attacker could exploit this to
USN-1080-1 fixed vulnerabilities in the Linux kernel. This update provides
the corresponding updates for the Linux kernel for use with EC2.
Original advisory details:
Thomas Pollet discovered that the RDS network protocol did not check
certain iovec buffers. A local attacker could exploit this to crash the
system or possibly execute arbitrary code as the root user. (CVE-2010-3865)
Vasiliy Kulikov discovered that the Linux kernel X.25 implementation did
not correctly clear kernel memory. A local attacker could exploit this to
Dan Rosenberg discovered that the Linux kernel TIPC implementation
contained multiple integer signedness errors. A local attacker could
exploit this to gain root privileges. (CVE-2010-3859)
Thomas Pollet discovered that the RDS network protocol did not
check certain iovec buffers. A local attacker could exploit this
to crash the system or possibly execute arbitrary code as the root
user. (CVE-2010-3865)
Dan Rosenberg discovered that the Linux kernel X.25 implementation
Wireshark.
Background
==========
Wireshark is a network protocol analyzer with a graphical front-end.
Affected packages
=================
-------------------------------------------------------------------
Background
==========
MIT Kerberos 5 is a suite of applications that implement the Kerberos
network protocol. kadmind is the MIT Kerberos 5 administration daemon,
KDC is the Key Distribution Center.
Affected packages
=================
Ionix MPLS Management Suite (Ionix MPLS) 4.0.0 and earlier
Ionix Multicast Manager (Ionix MCAST) 2.1 and earlier
Ionix Network Protocol Management Suite (Ionix NPM) 3.1 and earlier
Ionix Optical Transport Management Suite (Ionix OTM) 5.1 and earlier
Ionix Server Manager (EISM) 3.0 and earlier
Topics of special interest include:
* OS Security (XP, Vista, GNU/Linux, OS X, ...)
* E/I-Voting Case-Studies, Attacks, Weaknesses
* Mobile and PAN Security
* Network Protocol Analysis
* AJAX/Web2.0/Javascript Security
* Secure Software Development
* VoIP
* Perimeter Defense / Firewall Technology
* Digital Forensics
Background
==========
MIT Kerberos 5 is a suite of applications that implement the Kerberos
network protocol.
Affected packages
=================
-------------------------------------------------------------------
encoding of HTML content on outbound messages, thus a malicious attacker
with the ability to bypass outbound HTML filtering can send any type of
HTML content to other IM clients.
A handful of publicly available and well-known IM clients permit to send
un-sanitized data to any other client that supports the same
communications protocol including the vulnerable AIM 6.1, AIM 6.2, AIM Pro
and AIM Lite clients.
Second, although there are some defensive mechanisms implemented in the
vulnerable clients these are insufficient to properly handle messages with
potentially malicious content. Input validation of inbound messages
appears to be taking place but can be easily circumvented by an attacker.
