Home
Topics
Linux security
Linux system security best practices
Red Hat repairs buffer overflows in Ethereal

Article

Red Hat repairs buffer overflows in Ethereal

Michael S. Mimoso, News Editor

Red Hat Inc. released an update to Ethereal that repairs two buffer overflow vulnerabilities found in the open-source network monitoring software.

The overflows could crash Ethereal on Red Hat Linux 9

Requires Free Membership to View

Login

By submitting you agree to receive email communications from
TechTarget and its partners. Privacy Policy Terms of Use.

running on the i386 architecture. All versions of Ethereal prior to version 0.10.0, which was released Dec. 12, are affected.

In its alert, Red Hat said it was not known if anyone exploiting these vulnerabilities would be able to remotely execute code.

It is possible to crash Ethereal by injecting a malformed SMB (server message block protocol) packet onto a network, or tricking a user into reading a malformed packet trace file, Red Hat said.

Users are urged to upgrade to version 0.10.0.

Versions older than 0.10.0 are subject to remote denial-of-service attacks. Malicious SMB packets can trigger a segmentation fault in the SMB dissector as selected packets are processed, Red Hat said.

The other overflow was found in the Q.931 dissector. Sending a malformed packet triggers a null dereference, Red Hat said.

Related Topics: Linux system security best practices, VIEW ALL TOPICS

More News and Tutorials

Articles

Join the conversationComment

Share

Comments

Results

Contribute to the conversation

All fields are required. Comments will appear at the bottom of the article.

More from Related TechTarget Sites

Data Center
Server Virtualization
Cloud computing
Enterprise Desktop

Data Center
- Data center technologies evolve to meet tomorrow's computing demands
  
  VMware's upcoming public cloud and AMD's 64-bit ARM servers are technologies for the data center that exemplify the changes in the IT industry.
- New data center cooling strategies to improve efficiency, lower costs
  
  Stagnant strategies for data center cooling will keep energy bills climbing ever higher, but a more modern approach can bring them back down to earth.
- Converged systems usher in data center transformation
  
  The rise of converged systems has brought a new level of manageability to the data center, but these integrated offerings have a few drawbacks.
Server Virtualization
- How can I enable automated VM resource provisioning?
  
  As with many other facets of virtualization, VM resource allocation is becoming automated. Find out what tools you can use for automated provisioning.
- Columbia Sportswear's move from virtualization to private cloud computing
  
  Columbia Sportswear parlayed server virtualization into a private cloud. Along the way, it found that its management tools needed serious rethinking.
- Power management a must for oVirt high availability
  
  Dodge dreaded downtime by enabling power management in your oVirt 3.1 environment.
Cloud computing
- Google Compute Engine prices on par with AWS -- for now
  
  Conventional wisdom has Google and AWS locked in the Price War of the Titans with the launch of GCE, but a deeper look reveals a different truth.
- Limiting the effects of cloud computing outages
  
  After making the case for cloud based on high availability, IT pros are upset by cloud outages. With planning, there are ways to craft a strategy.
- Amazon Redshift an appealing alternative to on-premises data warehouse
  
  Amazon Redshift has intriguing pricing and features, but beware of its differences from a traditional, on-premises data warehouse.
Enterprise Desktop
- Why a Windows security scan is not enough to protect your workstations
  
  A traditional Windows security scan may lure IT into complacency about desktop vulnerabilities, so look at four areas to beef up Windows security.
- Microsoft addresses legacy apps with Windows 8 app compatibility tools
  
  New operating systems are always accompanied by compatibility concerns. Windows 8 app compatibility is no different, or is it?
- How to protect Windows startup from a compressed Boot Manager file
  
  This week, our expert answers a question on how a hidden file can hinder the Windows startup process and how to restore the Windows Boot Manager.

All Rights Reserved,Copyright 2003 - 2013, TechTarget